eliteforge-git-specification

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required scripts (e.g., scripts/auto_merge and scripts/git_change_summary.sh), as called by the SKILL.md workflow, run git fetch/git pull and read remote branches and commit messages from origin remotes—i.e., ingesting user-generated repository content—which the agent parses and uses to decide merges, deletions, and generated commands, so untrusted repo content could indirectly inject instructions.