gspdev-publish

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly calls the GitHub API (e.g., gh api repos/jubscodes/get-shit-pretty/milestones and gh issue list --milestone ...) to read milestone descriptions and issue lists from GitHub and then uses that user-generated content to populate release notes and determine which issues to close, so it ingests untrusted third-party content that influences actions.