resolve-pr-feedback

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill fetches user-generated review threads and comment bodies from GitHub pull requests via the GraphQL query shown in "Step 2: Fetch Unresolved Review Threads" (reviewThreads.nodes.comments.nodes.body) and then reads and acts on those comments to decide fixes, exposing it to untrusted third-party content.