CI/CD Pipeline Security Expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes workflow steps that fetch and execute public third-party content (e.g., bash <(curl https://raw.githubusercontent.com/rhysd/actionlint/... ) in .github/workflows/test-workflows.yml and numerous uses: entries that pull actions from public GitHub repos), which are untrusted/user-generated sources that the pipeline is expected to ingest and run.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The workflow includes a runtime step that downloads and executes a remote script via bash <(curl https://raw.githubusercontent.com/rhysd/actionlint/main/scripts/download-actionlint.bash), which executes remote code and is used as a required dependency in the test workflow.