gitlab-mr

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill clearly fetches and displays user-generated content from GitLab merge requests (e.g., "glab mr view --comments", "glab mr diff ", and opening MRs in a browser via glab mr view --web) and the workflows explicitly require reading those MR descriptions/comments which could contain untrusted instructions that influence approvals or follow-up actions.