sop-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly instructs the agent to read and extract information from public repositories/README files (see SKILL.md Example 3 and Maintenance "Sources: ... 仓库 README" referencing https://github.com/BloopAI/vibe-kanban) and references other public URLs in examples, meaning untrusted, user-generated web content is ingested and used to shape SOP steps and decisions.