refactor-migrate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly tells the agent to "Read changelogs and migration guides" (SKILL.md Working Mode step 1) and to "Consult the library's migration guide or changelog" (rules/api-replacement.md), which are typically open/public third-party sources the agent must read and that can materially influence migration decisions and actions, exposing it to untrusted indirect prompt injection risk.