channel-bridge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and forwards user-generated messages and reactions from third-party platforms (Signal/Telegram/Discord) via webhooks and API endpoints shown in SKILL.md (e.g., /api/v1/send, /api/v1/sessions_send, and /api/v1/reactions), so untrusted external content is read and can affect routing/behavior.