bug-fix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The workflow's Phase 1 Investigation explicitly instructs the agent to read GitHub issues via "gh issue view " (user-generated, public third-party content) and to interpret error messages and issue text to drive root-cause analysis and subsequent fix/test/review actions, so untrusted external content can materially influence tool use and decisions.