whatsapp-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests untrusted user-generated WhatsApp messages (see the n8n "Parse Message" node reading message.text.body and the "AI Response" / ai_chatbot sections that send that text to gpt-4 and drive lookups/escalations), so external user content is read and can directly influence model outputs and downstream tool actions.