pm-cli-usage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly connects to third-party providers (Asana, Notion) via commands like "pm connect" and fetches task data (see "pm tasks show" and the Unified Task Model where description may contain HTML/markdown), and those user-generated titles/descriptions are read and used to drive actions (e.g., "pm branch" slugifies task title, task selection for pm done), so untrusted third-party content can influence behavior.