github-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill uses the GitHub CLI to fetch and read public, user-generated content from GitHub repositories, issues, pull requests, code, and gists (see the "Capabilities" and command examples like "gh pr view", "gh issue view", and "gh search code" in SKILL.md), so untrusted third‑party content can be ingested and influence actions.