git-crypt-backup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly uses GitHub repos in its required workflow (SKILL.md setup and "Restore on New Machine" with git clone and git-crypt unlock), which fetches user-generated third-party content (GitHub repos) that the agent would load as workspace/config and could materially change behavior.