groove-groovebook-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill reads PR listings, PR bodies, and diffs directly from a configured public GitHub repo (via .groove/index.md and the gh pr list/view/diff commands), which are untrusted, user-generated third‑party contents that the agent must interpret to decide and submit reviews.