whatsapp-messaging

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads WhatsApp inbox data via the Kapso Meta proxy and SDK (e.g., GET /{phone_number_id}/messages and client.messages.query()), which ingests untrusted, user-generated content from third-party WhatsApp users and could allow indirect prompt injection.