swift-code-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and Platform Support sections explicitly instruct it to fetch and read GitHub/GitLab PR/MR data (e.g., "gh pr view ", "gh pr view --json comments", "gh pr diff ") and to load repository files (including .claude/CLAUDE.md), which means it will ingest untrusted, user-generated third‑party content (PR diffs and comments) and use that content to drive its review decisions.