init-relizy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Flagged because the required workflow explicitly mandates installing and invoking the third-party package "@ruan-cat/utils" (relizy-runner) and even points to a raw GitHub doc (https://raw.githubusercontent.com/ruan-cat/monorepo/…/relizy-runner/index.md), meaning the agent will fetch and act on untrusted public repository/npm content whose instructions and outputs can materially change tool use and next actions.