org-standards

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly reads and interprets repository content and PR data from GitHub (e.g., CLAUDE.md's "## Declined standards", the helper script's per-repo JSON output, and gh pr view results) as part of its required workflow, which are untrusted, user-generated third-party sources that can influence decisions and subsequent actions.