github-pages

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflows and scripts (e.g., workflows/Troubleshoot.md, workflows/Deploy.md and scripts/check-site-status.sh / scripts/verify-dns.sh) explicitly run curl/dig/gh API calls against user-supplied GitHub Pages URLs and custom domains and even read site HTML (curl | head), so it ingests untrusted, public/user-provided web content that the agent is expected to interpret and that can change subsequent diagnostics/actions.