confluence-page-viewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's execution workflow explicitly runs confluence-cli read PAGE_URL (SKILL.md step 3) to fetch and summarize Confluence page content (per references/rules.md URL validation), which are user-generated third-party pages the agent will read and interpret and that could contain instructions influencing subsequent behavior.