backlog-triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill fetches public, user-generated GitHub issue bodies and comments via scripts/triage-collect.js (gh GraphQL/API calls) which are parsed by triage-relate.js / triage-stale.js and rendered into anchor+checkbox proposals in the report that triage-apply.js can turn into gh commands, so untrusted third-party issue content is read and can materially influence automated actions.