resend-inbound-emails

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The webhook handler (assets/api/webhook-resend-route.ts) explicitly fetches full inbound emails via resend.emails.receiving.get and parses/stores sender name, headers and body (user-generated, untrusted content) which the system uses for threading, auto-creating creators, notifications, and is incorporated into the AI personalization context (buildPersonalizationContext / generate-personalized-email), so third-party email content can materially influence processing and downstream actions.