screenpipe

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill records and indexes screen and microphone content (SKILL.md: "Screenpipe records your screen and microphone 24/7" and the GET /search API which returns OCR and transcriptions including app_name "Google Chrome"), so the agent will read potentially arbitrary third‑party/web content captured from the user's screen and audio as part of its workflow, exposing it to untrusted content that could include instructions.