git-ops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly reads user-generated repository content (commit messages, PR/issue bodies, CI checks) via commands like gh pr view, gh pr list, gh issue list and by analysing commit history for changelogs/releases as described in SKILL.md, so it ingests untrusted third‑party content that can influence actions.