changelog-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly ingests and interprets user-generated commits and PR metadata from GitHub (see "Automate changelog generation from commits, PRs, and releases" and the GitHub Actions / semantic-release / git-cliff sections in SKILL.md), which are untrusted third‑party inputs that directly drive versioning and release decisions.