pull-request-msg-with-gh

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Issue number detection algorithm explicitly runs "gh issue list --search ..." to fetch GitHub issue titles (public, user-generated content) and uses those results to choose which issue to associate/close for the PR, so untrusted third-party issue content can influence decisioning.