bruhs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The peep workflow (commands/peep.md) explicitly fetches user-generated PR review comments via the GitHub API (gh api repos/.../pulls/.../comments and GraphQL reviewThreads) and interprets their bodies to categorize, apply fixes, post replies, and drive commits/pushes, which exposes the agent to untrusted third-party instructions.