kapso-ops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's operational scripts (e.g., scripts/messages.js, message-details.js, and webhook-deliveries.js) fetch and display WhatsApp messages and webhook payloads from external users via the Kapso API/webhooks, which are untrusted user-generated content the agent would read and interpret.