fetching-jira-ticket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The ticket-retriever subagent (./subagents/ticket-retriever.md) explicitly fetches and parses Jira content from the provided JIRA_URL—including descriptions, comments, subtasks, linked issues, and custom fields—which are untrusted, user-generated third-party data that the agent reads and uses to determine FETCH/Validation outcomes and downstream behavior, creating a vector for indirect prompt injection.