convex

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill defines HTTP endpoints that accept and process arbitrary external POST bodies (e.g., convex/http.ts: the "/webhook" and "/webhooks/stripe" handlers that read request JSON/text and pass it into internal mutations) so untrusted third‑party content can be ingested and influence subsequent actions.