java25-springboot4-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly requires and ingests user-provided code and diffs as part of its workflow (e.g., "NEVER review without code context. ALWAYS ask for files or diff", "Ask for changed files or use Glob to find them", and "Read changed files"), which are untrusted third‑party/user-generated inputs the agent will read and interpret.