ln-222-story-replanner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly loads and processes existing Stories from external task providers and runs provider-specific updates (e.g., "Phase 1: LOAD: Fetch existing items from Linear (or files)" in references/replan_algorithm.md and provider mappings to "linear"/"github" in references/storage_mode_detection.md), meaning it ingests user-generated third-party content (Linear/GitHub issues) that can influence API actions and next steps.