investigate-ci-failure

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and parse public CI artifacts and logs from third-party URLs (e.g., storage.googleapis.com/test-platform-results/... and gcsweb-ci.apps.ci.l2s4.p1.openshiftapps.com/gcs/...) via WebFetch, which are untrusted, user-generated CI outputs that the agent must read and use to drive diagnosis and next actions.