bump-version

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The skill’s runtime workflow reads PRs merged between the previous release tag and the target commit (Step 2), and those PR bodies/comments are outsider-authored free text that can be ingested into the agent’s LLM context via the PR listing/analysis path.