github-actions-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to "Search for latest GitHub Actions docs via Context7 or WebSearch" and to "use WebSearch" to verify versions, which requires fetching and interpreting open public web content (third-party docs) as part of its workflow, exposing it to untrusted external content.