release-dbt-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly polls GitHub workflow statuses (and opens workflow pages for environment approval) and checks the PyPI JSON API at https://pypi.org/pypi/dbt-mcp/json, so it fetches and interprets public third-party (user-generated/untrusted) content which directly determines actions like merging and releasing.