aurora

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required agent workflow instructs the Scout/Atlas research agents to search and ingest public community sources (see aurora/souls/scout.md and aurora/souls/atlas.md and the check-in examples in references/check-in-format.md), explicitly referencing GitHub issues and forums (r/homeassistant), so untrusted user-generated content is read and used to influence routing and follow-up actions.