check-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The script directly calls GitHub CLI (e.g., CHECKS_OUTPUT=$(gh pr checks "$PR" --repo "$OWNER/$REPO") and gh pr view / gh repo view in scripts/check_ci.sh) and parses/prints PR and CI output, meaning it ingests untrusted, user-generated third-party content (PR/CI logs/statuses) as part of its workflow and could enable indirect prompt injection.