create-boss

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Mode 1: Real Boss" workflow (SKILL.md, README, INSTALL.md) explicitly asks for and ingests user-provided chats, meeting notes, emails and pasted text and uses parsers in tools/wechat_parser.py, tools/feishu_parser.py, tools/email_parser.py and tools/generic_chat_parser.py to extract and analyze that untrusted third‑party content, which directly drives generation of persona/judgment/management outputs and subsequent actions.