release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's analyze.ts fetches and parses commits from the remote (uses git fetch + git log on origin/${target}) and calls GitHub via gh repo view and gh run list, and release.ts then uses the analysis.suggestedVersion and generated changelog to drive tagging, committing, and releasing, so untrusted user-generated commit/CI content from remote GitHub repositories can directly influence decisions and actions.