github-workflow-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and processes user-generated GitHub content (e.g., PRs, issues, run logs) via GitHub CLI commands like "gh pr view", "gh run view", "gh run download" and passes that data into ruv-swarm actions (e.g., pr-validate, analyze-logs), exposing the agent to untrusted third-party content from public repositories.