prs-reviewed

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly queries GitHub (see "Step 2: Query GitHub" and the included gh api commands) to fetch PRs and user reviews from the public brave/brave-core repository, which are user-generated, untrusted third‑party contents that the agent must read and use to decide which PRs to include.