commit-push-pr

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill reads and acts on GitHub issue content (e.g., via "gh issue view --json state,labels,title,url" and uses issue title/labels/body to choose commit/PR prefixes and draft messages), thereby ingesting untrusted, user-generated third-party content that can materially influence actions.