github-fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's scripts (scripts/inspect_pr_checks.py) call the GitHub CLI (e.g., "gh pr checks" and "gh run view --log") to fetch GitHub Actions run URLs and logs—public, user-generated third‑party content—which the agent ingests and uses to triage failures and decide fixes, creating a clear vector for indirect prompt injection.