devops-iac-engineer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's CI/CD reference (reference/cicd.md) includes explicit runtime commands that fetch and apply public third-party content—e.g., "kubectl apply -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml" and "flux bootstrap github ..."—so the agent would ingest and act on untrusted/public repo/manifests that could influence behavior.