paw-tools-release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads and parses repository commit messages and version files (via git log in references/02-version.md and references/03-changelog.md and the parse_commits.py script) and then uses that user-generated content to decide the version bump and generate release notes that are used when creating a GitHub release (references/04-release.md), so external/untrusted commit messages can materially influence automated actions.