upgrade-dependencies

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs agents to fetch and summarize release notes and changelogs from public sources like GitHub (CHANGELOG.md, GitHub Releases) and RubyGems pages and to act on those findings to decide upgrades, which exposes the agent to untrusted third‑party content that can influence actions.