verify-tests-fail-without-fix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill auto-detects test classes and fix files by reading changed files from the PR (git diff + Get-Content of TestCases.Shared.Tests/*.cs) and calls gh CLI to read/update PR metadata, so it consumes untrusted, user-generated GitHub PR content which directly influences which tests are run and label updates.