release-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to fetch and parse external JSON from the OpenShift Release Controller API (https://amd64.ocp.releases.ci.openshift.org/api/...) and to read test-result files from GitHub (_releases/ocp-test-result-{build}-amd64.json), and those untrusted third-party contents are directly used to make gate decisions and trigger subsequent tool actions.