git-pr-merge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and reads user-generated GitHub content (PR body, diff, checks, and recent PR comments) via commands like gh pr view, gh pr diff, gh pr checks, and gh api repos/.../issues/.../comments, and uses that untrusted content to drive review decisions and whether to run merge or other git commands.