submit-github-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly consumes user-generated GitHub PR diffs and review findings (see "Step 1: Aggregate Findings" and "Full Pipeline Integration" which references retrieve-diff-from-github-pr) and uses those snippets to determine review events and post inline comments, so untrusted third-party content can directly influence actions.