dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). SKILL.md explicitly states the skill operates "from a GitHub issue" (takes an issue number/URL and runs /plan, /implement, /create-checklist, /create-pr-text), so it ingests public, user-generated GitHub issue content that can directly influence planning and code-generation decisions.