omi-plugin-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly ingests untrusted user-generated content via webhook endpoints (e.g., /webhook/transcript and /webhook/memory-created) from the Omi app and testing services like webhook.site, so the agent will read and act on arbitrary third-party transcripts/memories delivered via webhooks.