github-workflow-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses user-generated GitHub content (e.g., "gh pr view ...", "gh run view/download", and multi-repo sync examples referencing github.com/org/…") which are public, third‑party sources that the agent ingests and interprets as part of its workflows.