gh-fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's script and workflow fetch and parse GitHub-hosted, user-generated CI content (e.g., via gh pr checks, gh run view --log, and gh api /repos/.../actions/jobs/.../logs in scripts/inspect_pr_checks.py) and then extracts and summarizes log snippets for the agent to read, which exposes it to untrusted third-party content.