kubernetes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's ArgoCD workflow (the ArgoCD Application manifest in SKILL.md with repoURL=${GIT_REPO} and the scripts/argocd-app-sync.sh) causes the system to fetch and apply manifests from an external Git repository (potentially public/user-provided), which the agent/cluster will interpret and act on (sync/prune) and thus could be influenced by untrusted third-party content.