release-notes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill runs GitHub CLI commands like "gh pr list" and "gh issue list" to ingest PR and issue titles/bodies from GitHub (user-generated, potentially public third-party content) which the agent is expected to read and analyze when generating release notes.