receiving-code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly requires the agent to READ and act on code review feedback from "External Reviewers" and to interact with GitHub review comments (see "External Reviewers" and "GitHub Thread Replies" / gh api ...), which are user-generated, untrusted third‑party inputs that the agent must interpret and that can materially influence actions.