mastering-github-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly issues gh search/gh api calls against public GitHub (see SKILL.md examples and the scripts scripts/find-repos-with-path.sh and scripts/batch-search.sh) to ingest and iterate over arbitrary public repository/code results and then perform actions (clone, trigger workflows, create/merge PRs), meaning untrusted user-generated content from GitHub is read and can materially influence agent decisions and tooling.