docs-updater

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (medium risk: 0.65). The skill ingests git commit messages and bodies from the repository via git log ${LATEST_TAG}..HEAD --pretty=format:"%h|%s|%b" and git diff outputs; these are outsider-authored free text if the commits were written by people other than the operating user (e.g., other contributors), which then becomes LLM-readable context for changelog/README generation.