release-tag

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The workflow explicitly runs git pull (git pull origin ) and inspects remote/commit data via git log and tags, which can ingest untrusted, potentially public repository commits or messages that the agent reads and uses to decide version bumps and subsequent commands.