github-issues

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and reads repository issue content and templates from GitHub (see SKILL.md steps: "Check for issue templates in .github/ISSUE_TEMPLATE/ or .github/", "fetch the current issue first", "Search issues", "List repository issues"), which are untrusted, user-generated third-party sources and are used to determine titles, bodies, assignments, and follow-up actions.