connect-composio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly reads and processes user-generated content from third-party services (e.g., "Pull yesterday's completed GitHub issues" and social networks like Twitter/X, LinkedIn, Facebook), so the agent would ingest untrusted public content as part of its workflow.