code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and reviews user-provided code/files as part of its workflow (see "Use this skill when... User uploads code files" / "Use this skill when user asks for code review"), which is untrusted, user-generated content that the agent will read and could be used for indirect prompt injection.