event-gateway

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and processes third-party webhooks (e.g., Stripe, Shopify, GitHub) via Hookdeck Source URLs (https://hkdk.events/xxx) and directs agents to inspect/parse and act on those event payloads (see SKILL.md "Use Cases" / 02-scaffold.md handler structure and references/connection-rules.md for filters/transforms), which are untrusted user-generated inputs that can influence routing/processing decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill explicitly instructs agents to run runtime installs that fetch and install remote code (e.g. "npx skills add hookdeck/webhook-skills --skill {provider}-webhooks -y -g") which pulls the provider skill from the hookdeck webhook-skills repository (https://github.com/hookdeck/webhook-skills) — a required runtime dependency that installs/executes remote code, so it meets the criteria for a risky external URL.