run-automated-tests

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly ingests and interprets repository files (e.g., README.md, CONTRIBUTING.md, .github/workflows/*.yml, package.json, build manifests) as required evidence to choose and run test commands, meaning untrusted, user/third‑party content from a repo can directly influence tooling and next actions.