resend-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's webhook handler (/api/webhooks/resend) directly ingests and forwards inbound email content (event.data.html or event.data.text)—untrusted, user-generated third-party content—which the agent reads and includes in outgoing messages, enabling indirect prompt injection.