git

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The SKILL.md explicitly instructs scanning and reading public GitHub issues using gh (see "Scanning GitHub Issues Before Writing a PR Description" with gh issue list/view), which are untrusted, user-generated web content the agent would ingest and that could influence PR text and follow-up actions.