external-gitcode-ascend-megatron-commit-tracker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and parses user-generated content from the public GitHub repository https://github.com/NVIDIA/Megatron-LM (see SKILL.md and scripts/fetch_upstream_changes.py and scripts/list_remote_branches.py), normalizing commit/PR metadata (titles, messages, touched files) into a change-set that is then consumed by downstream analyzers, so untrusted third‑party content can influence agent decisions and actions.