good-morning

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly says to "offer to backfill from GitHub" for missing journal content, which would cause the agent to fetch and read content from an open/public, user-generated third-party site (GitHub) as part of its workflow.