configure-release-please

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches the latest release tag from the public GitHub API (curl -s https://api.github.com/repos/googleapis/release-please-action/releases/latest) as part of its required execution steps and uses that value to decide which action version to apply/update in workflows, so untrusted third-party content can materially influence agent behavior.