github-dashboard

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill calls GitHub via the GH CLI (e.g., "gh api notifications", "gh pr list", "gh issue list") and ingests user-generated content from issues, PRs, and notifications on GitHub, exposing the agent to untrusted third-party content that could carry indirect prompt injection.