jira-browser-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and parses arbitrary Jira content (issue HTML/XML/JSON, remote links, and attachments) from user-specified servers/backlog/JQL URLs — as shown in SKILL.md and implemented in scripts/jira-browser-fetch.js — and then reads and uses that untrusted, potentially user-generated content to discover connected keys and drive further automated fetches, so it could enable indirect prompt injection.