release-management

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests user-generated GitHub content—e.g., gh release --generate-notes in SKILL.md and scripts/create-release.md and the release-scripts.sh/python tools parse commit messages and PR-generated notes from GitHub—to build release notes and to decide version bumps, so untrusted third-party PR/commit text is read and can influence actions.