webflow-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill reads and interprets content from Webflow sites and CMS via endpoints such as WEBFLOW_GET_PAGE_DOM, WEBFLOW_LIST_COLLECTION_ITEMS, and WEBFLOW_GET_COLLECTION_ITEM, which can pull untrusted public or user-generated page and CMS content into the agent's workflow.