gh-fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow and bundled script (scripts/inspect_pr_checks.py) explicitly call gh commands (e.g., gh pr checks, gh run view --log, and gh api /repos/<owner>/<repo>/actions/jobs/<job_id>/logs) to fetch GitHub Actions run logs and PR check details (user-generated/untrusted content) which the agent is instructed to read, summarize, and use to create and implement fixes, so third-party content can materially influence agent decisions.