external-mindstudio-github-raw-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and curls raw content from public GitHub repositories (e.g., raw.githubusercontent.com) and requires reading a repository's user-provided agent_router.md to determine document paths and subsequent fetches, meaning untrusted, user-generated third-party content on GitHub is read and used to drive the agent's actions.