triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Gather context" step explicitly directs the agent to query the project issue tracker and read full issue bodies and comments (user-generated content) and then base triage decisions and agent briefs on that content, so untrusted third‑party input can materially influence the agent's actions.