qe-release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's required workflow explicitly reads and acts on public third-party content—e.g., using GitHub CLI to view workflow logs ("gh run view --log-failed" / "gh run list") and querying/instantiating the published package via "npm view" and "npx agentic-qe@"), which are untrusted user-generated sources whose contents are inspected and used to decide next actions.