tdd-rust

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). SKILL.md explicitly requires capturing real command output (e.g., "gh pr view 42" and git log) into fixtures and feeding those untrusted, user-generated outputs into filter_mycmd and the run() logic, so public third‑party content is ingested and can influence tests and runtime behavior.