create-proposal

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly reads external Google Sheets (see scripts/read_sheet.py and SKILL.md "Read client data from sheets if needed"), and that untrusted, user-generated sheet content is parsed into proposal tokens and used to create/send PandaDoc proposals and follow-up emails—so third-party content can materially influence actions.