webhook-integration-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill’s runtime workflows explicitly ingest and act on incoming webhooks from external providers (see "Webhook Consumer Design" Flask examples in SKILL.md and provider handler examples in references/provider-examples.md for Stripe/GitHub/Twilio/Slack/SendGrid), meaning untrusted third-party payloads are parsed and routed to handlers that influence processing and actions.