gh-fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts use the GitHub CLI to fetch and parse PR check details and GitHub Actions logs (see scripts/inspect_pr_checks.py calls to gh run view and gh api /repos/.../actions/jobs/<job_id>/logs) and then extract and summarize log snippets, meaning it ingests arbitrary user-generated CI/log output from GitHub which could contain untrusted instructions.