git-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and parses PR issue comments from third-party reviewers (see "PR Fix Comments Workflow" Step 2.2 which runs commands like bun run gh-tool pr issue-comments-latest --pr <pr_number> and instructs to "Parse the comment body to extract actionable items"), so untrusted user-generated content from PR comments is read and used to decide and apply code changes.