github-readme

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly ingests public, user-generated GitHub content (see Step 3: "GitHub About/description: Read via gh repo view") and performs external checks like "Badge URLs resolve?" as part of its audit/generate/update workflow, so untrusted third‑party content can influence decision-making and subsequent actions.