awf-release-integrator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires looking up and reviewing the latest github/gh-aw-firewall release metadata, release notes, and upstream files (e.g., docs/awf-config-spec.md, schema JSON, release assets) from the public GitHub repo, so the agent would fetch and interpret untrusted third-party content that can change its actions.