visualize-plan

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly pulls and uses GitHub issue content (e.g., the "GitHub issue" option in SKILL.md that references gh issue view #N and the scripts/detect-plan-context.sh behavior) and then parses that issue body to drive plan detection, visualization, task creation, and follow-up actions, meaning untrusted, user-generated issue text can materially influence agent behavior.