pd-slack-threads

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and returns Slack channel thread messages (SKILL.md and resources/pd-slack.ts describe returning message text, replies, and using ts to join threads), which are user-generated, untrusted third-party content that the agent reads and could materially influence subsequent actions.