git

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly uses the GitHub CLI/API (e.g., "gh pr view", "gh pr list", "gh api repos/{owner}/{repo}/pulls") and related workflows, which fetch user-generated, public GitHub PRs/issues/comments that the agent would read and which could materially influence subsequent git/merge/PR actions.