GA-C006: Unrestricted pull_request_target

`pull_request_target` runs in the context of the base repository with write permissions and access to secrets, even for PRs from forks. Without branch or path restrictions, any fork can trigger this workflow. The Shai Hulud v2 worm (November 2025) exploited this to create self-replicating workflows across repositories. Always add `branches:` or `paths:` filters.