skill-hunter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly uses the GitHub CLI (gh search, gh api, gh repo clone, gh browse, downloading SKILL.md files) to fetch and read public GitHub repository files (untrusted user-generated content), and those downloaded files are inspected and used to drive follow-up actions like adaptation, storage location, and commits.