release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly downloads and parses release assets from the public GitHub release (Step 10: "gh release download ... --pattern 'checksums.txt'" and related "gh release view" / "gh run" calls) and uses those untrusted release-generated values to atomically update Homebrew formula SHAs and drive commits/pushes, so external release assets can directly influence subsequent actions.