be-jenkins-deploy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly ingests GitHub PR data and URLs as part of its required workflow (Step 2: "PR clue" — using gh pr view / gh pr list and parsing github.com/.../pull/N), which are untrusted, user-generated third‑party sources whose contents are read and used to determine branch selection and deployment actions, so they could materially influence tool behavior.