reproduce-bug-report

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly requires ingesting and acting on bug reports from external/user-generated sources (e.g., "Use this skill when the current context is a GitHub issue, support report, Linear ticket..." and the Shared child prompt's "Bug report context: <paste or summarize the issue body, comments...>"), so untrusted third-party content can directly influence agent actions.