maintain

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests open GitHub content (e.g., "Pull all open issues from the project board" and "Reads the FULL thread for every issue
• body, all comments") from the project's GitHub project board/issue threads, which are untrusted, user-generated sources and are used to drive triage decisions and draft actions.