webhook-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts and processes arbitrary external webhook payloads (untrusted user-generated content) via the /webhooks/:id endpoint and allows registering arbitrary external URLs through /api/webhooks/subscribe, so the agent will read and act on third‑party content.