fix-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly fetches GitHub Actions run details and log URLs via gh run view (Step 2) and instructs diagnoser agents to read pasted log lines and repository source files from those job URLs (Step 3), which are untrusted, user-generated third‑party content that can directly influence agent decisions and fixes.