gpu-kernel-ako4all

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Preflight explicitly instructs running scripts/ensure_ako4all_clean.sh which will clone/sync the upstream AKO4ALL repo (an open/public third‑party repository) into the workspace and requires the agent to use/verify that worktree as part of the mandatory AKO workflow, so untrusted external repo content is fetched and can materially influence subsequent actions.