coderabbit-core-workflow-a

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and analyzes pull-request diffs from target repositories via the CodeRabbit API (see SKILL.md Step 2: "Trigger the core review workflow... CodeRabbit will analyze the diff... and post structured comments"), which are user-generated/untrusted third-party contents that can directly influence automated actions and decisions.