automate-whatsapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill allows agent nodes and workflow nodes to call arbitrary external HTTP endpoints and app integrations (see references/node-types.md: flow_agent_webhooks and webhook node configs, plus pipedream/app integrations via search-actions/configure-prop), so the agent can fetch and interpret untrusted third‑party responses.