monorepo-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The script scripts/check-ci-status.sh calls GitHub CLI (gh run list -R "$repo" --json ... ) to fetch latest run data including the user-controlled displayTitle from public GitHub repositories, which the agent reads and interprets to determine status, so untrusted third-party content could influence behavior.