Gitee Workflow Automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly calls Gitee MCP endpoints such as mcp_gitee_list_repo_issues, mcp_gitee_get_pull_detail, mcp_gitee_get_diff_files, and mcp_gitee_get_file_content (see "核心能力与工作流" and "代码审查辅助"), which fetch and analyze user-generated content from public Gitee repositories/PRs/issues that the agent reads and uses to make decisions and drive actions.