docs-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's required workflow reads and acts on GitHub PRs (e.g., "gh pr diff ${PR_NUMBER}" and gh api calls in SKILL.md), thereby ingesting user-generated, potentially untrusted PR content that can influence posting suggestions or committing changes.