lead-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly expects and processes Pull Request content and commits (e.g., code-review/pr-review.md asks for a "Lien vers la PR or diff" and delivery/release-notes.md documents using "gh pr list" to generate release notes), which are user-generated content on a third-party platform (GitHub) that the agents would read and which can materially influence reviews, approvals and release actions.