ghwf2-spec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly runs "gh issue view --json body,comments" and states "Include comments as additional requirements" in the Processing steps, so untrusted, user-generated GitHub issue bodies and comments are read and used to drive spec creation and follow-up actions (commit/push/label), allowing indirect prompt injection.