github-workflows

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow steps (e.g., SKILL.md "Before Making Changes" and release-management.md "Before Creating Release Workflows") explicitly instruct fetching and parsing live repository and release data via gh CLI and git (gh repo view, gh run/list, gh release list/view, git log, parsing tags/commits), which pulls untrusted user-generated GitHub content that the skill expects to read and use to drive release/publish decisions.