code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required Review Modes explicitly include a PR mode that runs "gh pr diff ", which fetches GitHub pull request diffs (user-generated, public third-party content) that the agent is expected to read and use to drive review decisions.