issue-analyze

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required Phase 1 explicitly runs "gh issue view --json title,body,labels,comments" (see SKILL.md Phase 1 and examples), so it ingests user-generated GitHub issue content and uses that content to drive classification and follow-up investigation actions, exposing the agent to untrusted third‑party input.