create-pull-request

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly uses the GitHub CLI to list/view remote pull requests (gh pr list / gh pr view) and to read a repository PR template (.github/pull_request_template.md), meaning it fetches and interprets user-generated content from GitHub which could contain untrusted instructions that influence PR creation.