ci-fix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly uses the GitHub CLI to fetch and inspect workflow runs, logs, PR status, and downloaded artifacts (e.g., gh run view --log, gh run download, gh pr view), which causes the agent to read untrusted, user-generated content from third-party repositories and CI logs.