analyze-github-action-logs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches GitHub Actions logs from repositories using gh run view (Step 2: "Fetch Logs") and then instructs launching subagents to read and analyze those log contents (Step 4), which are user-generated/untrusted third-party data that the agent is required to interpret and could materially influence its decisions.