create-pr

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly runs the Atlassian CLI to fetch JIRA issue fields (step 4: "acli jira workitem view ...") and then uses the returned summary/description/issuetype to build the PR title and body (step 7), meaning untrusted, user-generated JIRA content is ingested and can directly influence actions like gh pr create.