project-master-orchestrator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The orchestrator explicitly fetches and analyzes user-generated content from third-party platforms (e.g., ClickUp via /api/v2/... endpoints and webhook events like "comment added", GitHub via /repos/.../issues, /pulls, /discussions, and Plane.so work-items) as part of its discovery and analysis phases, exposing the agent to untrusted external content that could enable indirect prompt injection.