ticket-grooming

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly reads and processes ticket and issue content from third-party systems (e.g., "Read ticket" / "searchJiraIssuesUsingJql" / getJiraIssue / gh issue view in the SKILL.md "Detect Ticket System" and workflow), which are user-generated/untrusted and are interpreted to drive investigation, decisions, and posting actions (triaging notes), creating a clear path for indirect prompt injection.