moai-workflow-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The PR Code Review workflow explicitly ingests and analyzes user-generated repository and PR content (e.g., finding CLAUDE.md files, summarizing PR changes, reading previous PR comments and git blame context, and posting via the gh CLI), which are untrusted third-party inputs the agent is expected to read and interpret.