github-scanning

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and interprets public GitHub user-generated content (issues, pull requests, discussions, releases, Dependabot alerts, and workflow run data) as described throughout SKILL.md, which can contain untrusted text that may influence agent decisions and actions.