glab-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflows explicitly fetch and display user-generated GitLab content (e.g., glab mr view --comments, glab issue view --web, glab ci trace, and glab api "projects/:id/jobs?..." in SKILL.md and references), so the agent would ingest untrusted third-party content from public repos/issues/MRs/job logs that could materially influence subsequent actions.