github-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill runs gh/gh api searches against GitHub (searching public repos, code, issues, and PRs) and thus ingests and displays user-generated, untrusted content from the open web (GitHub) that could carry indirect prompt-injection payloads.