release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The workflow requires running npm view / npm install (isolated install) and using gh run watch/view to fetch GitHub Actions logs and publish outputs — both are untrusted, public third-party sources (npm registry artifacts and CI logs) whose contents the agent is expected to read and use to diagnose failures and decide next actions.