issue-create

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill fetches and ingests repository data from GitHub (e.g., "Fetches repository's existing labels" via gh label list --repo and "Searches for similar issues" as documented in SKILL.md and references/label-strategy.md), which are public, user-generated third‑party contents that the AI reads and uses to suggest labels and related-issue actions, so untrusted content can influence decisions and tool use.