ce-commit-push-pr

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly runs GitHub commands (e.g., gh pr view, gh pr diff, and related fetches described in references/pr-description-writing.md and SKILL.md Pre-A/Step A) to read PR metadata and body (including preserving ## Demo/evidence blocks), which ingests untrusted, user-generated content from public PRs and uses that content as part of the required PR-composition workflow.