bitbucket-api-env

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches content from Bitbucket Cloud's REST API (default https://api.bitbucket.org/2.0) — see SKILL.md workflow steps and scripts/bitbucket-api.mjs which read pull requests, comments, activity, diffs, and other user-generated data that the agent is instructed to summarize and act on, exposing it to untrusted third‑party content.