gh-review-requests
Warn
Audited by Snyk on Jun 24, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). The required runtime path uses GitHub CLI to fetch unread
review_requestednotifications and PR metadata (e.g., viagh api notifications --paginateand subsequentgh api repos/{repo}/pulls/...), which includes outsider-authored free text like PR titles/body and notification content from other users’ GitHub activity.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata