github-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly requires searching and ingesting content from public GitHub and package registries (e.g., github.com, npmjs.org, pypi.org) and instructs the agent to read, evaluate, harvest patterns, and act on those findings, so untrusted third‑party content can materially influence decisions and tool use.