gitops-principles

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and templates (e.g., templates/applicationset.yaml pattern 2 "git" generator and pattern 5 "pullRequest" generator, templates/application.yaml repoURL examples, and the references/azure-arc-integration.md Application example pointing at https://github.com/Azure-Samples/aks-store-demo.git) explicitly configure controllers to fetch and automatically apply manifests and Helm charts from public Git/helm repositories and PRs (untrusted user-generated content), which the system will interpret and act on, enabling indirect injection into runtime behavior.