build-task

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests task content from external task references such as GitHub issues/URLs and Beads/Linear (see "Input" examples and "1. Fetch Task" / "AC source: GitHub Issue" in SKILL.md), and it parses acceptance criteria and task descriptions from those user-generated public sources to drive planning and build actions, so untrusted third-party content can influence agent behavior.