pull-request-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's GitHub Actions workflows (see references/github-actions-auto-review-assignment.md and references/github-actions-auto-merge-on-approval.md) read and act on context.payload.pull_request (PR titles, bodies and other contributor-provided fields), which are untrusted user-generated content and can directly influence automated reviewer assignment and merge decisions.