sentry-upgrade-migration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md step 2: "Review release notes and changelog for target version") and its Resources explicitly point the agent to open public third‑party pages (e.g., the GitHub changelogs and Sentry migration docs at the linked URLs), which the agent is expected to read and that can materially influence upgrade decisions and actions.