github-code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's PR review workflow explicitly fetches and reads user-generated GitHub PR data via gh/curl (e.g., "Get PR details" and the curl calls to https://api.github.com/repos/.../pulls/... in the "Review a Pull Request" and "PR Review Workflow" sections), and those third-party PR bodies/files are parsed and used to decide comments, approvals, and follow-up actions.