vp-git-cleanup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Workflow (Step 4 "Add Optional Host Checks") and earlier fetch steps instruct the agent to run git fetch and use the GitHub CLI commands (gh pr list / gh pr view) to ingest host PR metadata and remote-tracking refs—user-generated, public content—which the skill explicitly uses as evidence to decide whether to keep or delete branches/worktrees.