webflow-webhooks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill exposes the agent to untrusted third-party content by accepting and parsing Webflow webhook payloads (e.g., form submissions, CMS items, orders) sent to the /webhooks/webflow endpoint—see SKILL.md and the handler in examples/express/src/index.js—which the code reads (raw body → JSON) and uses to drive processing and decisions.