git-branch-cleaner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill runs git fetch and uses outputs of git branch --merged / git branch -r --merged (i.e., branch lists from the remote "origin"), which are user-generated/untrusted repository content and are read and interpreted to decide and execute deletions, so untrusted third‑party content can materially influence actions.