opentelemetry-go-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow (SKILL.md) explicitly directs the agent to load and interpret public repository sources—e.g., CONTRIBUTING.md, VERSIONING.md, CHANGELOG.md and relevant code in the target open-telemetry/opentelemetry-go repo—which are untrusted, user-generated third-party content that will be read and used to drive review decisions.