sdd-issue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The workflow explicitly instructs the agent to search and fetch existing GitHub issues (e.g., "Search existing issues: gh issue list --search" and "Fetch the issue: gh issue view "), which are user-generated, potentially public third-party contents that the agent must read and use to populate/enrich SDD issues and drive subsequent automated actions.