generate-release-notes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly calls the GitHub API (e.g., Step 3: gh api "repos/teambit/bit/compare/..." to fetch commits and Step 5: gh pr view / gh pr list to fetch PR titles/bodies/labels) and requires the agent to read and act on those user-generated, public GitHub commit and PR contents to decide filtering/categorization and compose release notes, which meets the criteria for exposure to untrusted third-party content.