auth-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly ingests public, user-generated GitHub profile data via OAuth (see "What Data GitHub Provides" in references/auth-setup.md and the "Profile Creation on GitHub OAuth" steps) and uses that data to auto-populate user profiles and create records, so untrusted third-party content is read and can affect application behavior.