git-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and processes data from an external "upstream" remote (e.g., git fetch upstream, git rebase upstream/main, diff summaries and PR generation described in references/workflows.md and the Gate 1/2 workflows), so untrusted third‑party repository content can be read and used to drive actions and decisions.