gh-fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (scripts/inspect_pr_checks.py) call gh to fetch and parse GitHub PR/check data and Action logs (e.g., gh run view --log and gh api /repos/<owner>/<repo>/actions/jobs/<job_id>/logs and gh pr checks ...) and then extract and summarize log snippets, which ingests untrusted, user-generated content from public GitHub PRs and Action logs into the agent's workflow.