git-conflicts

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and merges remote PR branches (via "gh pr view" and "git fetch origin ") and then reads and interprets repository files and conflict markers to decide resolutions, which means it ingests untrusted/user-generated third‑party content (PRs/remote branches) as part of its workflow.