git-project-status

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's "GitHub Activity" section in SKILL.md instructs the agent to run gh pr list / gh issue list against the repo's GitHub origin, directly ingesting user-generated PR and issue content which the agent reads and uses to generate summaries and recommended actions, enabling indirect prompt injection from third-party GitHub content.