bump-deps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md step 3 Task prompt: "Analyze upgrade... GitHub: {repo_url}" and the PR template requirement that every breaking change reference a changelog/release URL) clearly expects the agent/sub-agents to fetch and interpret public GitHub changelogs/releases (untrusted third-party content) which can materially influence upgrade decisions and tool actions.