pr-trends

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's runtime script (scripts/report-pr-trends.mjs) explicitly calls the GitHub CLI ("gh pr list") and parses local git log/commit subjects to ingest GitHub PR metadata and user-generated commit messages, which are untrusted third-party content that the tool reads and aggregates as part of its workflow.