twilio-email

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests third-party webhook payloads (SendGrid Event Webhook at /webhooks/sendgrid/events and the Inbound Parse webhook) containing user-generated email content and event data, and it parses and uses those events to drive decisions (suppression handling, marking bounces, sending logic) as documented in the webhook ingestion and inbound-parse sections of SKILL.md.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill contains explicit sudo installation commands and instructions to create/modify system-wide resources (systemd unit in /etc/systemd/system, /etc/nginx config, /etc/email-sender env files), which require elevated privileges and therefore can modify the machine state.