coderabbit-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly exports and processes PR review comments (scripts/export-comments.ts and scripts/reply-to-threads.ts called in Quick Start) which are user-generated, third‑party PR/thread content that the agent is expected to read and act on, so those comments could contain instructions that materially influence agent behavior.