changelog-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes a GitHub API integration (src/integrations/GitHubIntegration.js) and the CLI supports creating/releases and fetching PR/repo data (e.g., the --github-release / --github-token flow in bin/cli.js), which causes the agent to fetch and interpret user-generated content from public GitHub repositories (untrusted third-party content) as part of its workflow.