fix-security-vulnerability

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The skill fetches Dependabot alert details from GitHub via gh api repos/getsentry/sentry-changelog/dependabot/alerts/<alert-number>; that alert content is outsider-authored (Dependabot/GitHub security system) and is ingested as readable text for analysis in the agent’s LLM context.