fix-issue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Workflow step "Fetch & understand the issue" in SKILL.md explicitly runs gh issue view <number> --json title,body,labels,assignees,comments to retrieve GitHub issue bodies/comments (user-generated, potentially public), and then requires the agent to extract/interpret acceptance criteria and drive implementation and PR actions—allowing untrusted third-party content to materially influence behavior.