issue-triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and searches GitHub issues and reads issue titles, bodies, comments, and linked content as part of its workflow (see SKILL.md: "Stage: search-duplicates" and "diagnose-and-validate" plus the Global Rules' note that those issue fields are untrusted), which are public/user-generated sources that can materially influence triage decisions.