deps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly expects using the GitHub CLI to "look up action commit SHAs" (SKILL.md assumptions) and instructs pinning and matching third‑party GitHub Actions (e.g., rules/audit-workflow.md, lockfile-integrity.md) which requires fetching and interpreting public GitHub repository metadata, exposing the agent to untrusted, user-generated third‑party content.