resolve-pr-parallel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow and scripts (scripts/get-pr-comments) explicitly fetch GitHub pull request reviewThreads and comment bodies (user-generated PR comments) and then spawn agents that read and act on those comments to make code/resolve decisions, exposing the agent to untrusted third‑party content.