git-merge-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow and rules explicitly instruct the agent to fetch and inspect remote PR data and repo contents (e.g., "gh pr view", "gh pr checks", "git fetch origin", and "Read tool on each file") which pulls user-generated PR descriptions, comments and code from GitHub/origin that the agent must read and act on to decide merges and conflict resolutions.