git-publish-release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches and analyzes user-generated content from GitHub (e.g., via "gh release list", "gh repo view" and git log commit history / release data) as part of its required workflow and uses that content to generate Release Notes and drive release-creation decisions, so untrusted third‑party commit/release text can influence agent behavior.