deploying-to-remote-clouds

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly directs the user to inspect GitHub's "Recent Deliveries" webhook payloads and remote cloud job logs (via tau query logs), which are untrusted, third‑party/user-generated content that the workflow reads and uses to decide redelivery and next actions.