git-operations-specialist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs the agent to use GitHub CLI and the GitHub REST/GraphQL APIs to fetch pull request details, issue information, and "latest comments" (user-generated, potentially public third-party content) which the agent will read and interpret as part of its workflow.