plan-viz

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly supports pulling plan content from GitHub issues (see the usage example "/ork:plan-viz #234" and STEP 0 "GitHub issue" option) and the detect-plan-context.sh script can call gh issue view to ingest issue data, meaning user-generated GitHub content would be read and could materially influence the generated plan and follow-up actions.