omni-embed

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill ingests and acts on user-generated content from embedded Omni dashboards (loaded from yourorg.embed-omniapp.co) and postMessage events (see "Embed Events" / "dashboard:tile-drill" and "Custom visualization events" / markdown ), which the agent is explicitly instructed to read/interpret and use (e.g., to sign/embed dashboards or apply filters), allowing untrusted dashboard/content payloads to influence actions.