pnpm-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required steps 3–4 explicitly fetch data from the public GitHub API (curl https://api.github.com/repos/pnpm/action-setup/releases/latest) and resolve tags via git ls-remote on https://github.com/pnpm/action-setup, which are untrusted third‑party sources whose returned tag/commit values are read and used to modify workflows (i.e., they can materially influence which action/commit is pinned).