fix-flaky-test

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill repeatedly instructs the agent to fetch and read untrusted, user-generated content from public GitHub (e.g., "gh issue view " and downloading CI job logs via "gh api ... actions/jobs/<job_id>/logs" and "gh run download") and to interpret those issue texts and logs to drive reproduction and fix decisions, which meets the criteria for exposure to third-party content that could contain indirect prompt injections.