email-imap-full-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill connects to an IMAP server (IMAP_HOST) via scripts/imap_full_fetch.py to fetch and parse raw email bodies, HTML, headers, and attachments—untrusted, user-generated content that the agent is expected to read and that could materially influence downstream decisions.