tech-hub-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The AGENTS.md workflow (Step 3: "Explore Project" — identify MCP server configs and activation states) and the Example Tasks (e.g., "Activate GitHub MCP for code scan") explicitly instruct the agent to activate and fetch data from external services like GitHub/other APIs, which are public/user-generated sources the agent will read and could therefore carry indirect prompt-injection content.