convex-helpers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's docs include Hono HTTP endpoint examples (references/crud-http-cors.md / SKILL.md) that accept arbitrary webhook request bodies via c.req.json() and forward them to internal mutations (e.g., internal.webhooks.process), so it clearly ingests untrusted third-party content that can influence subsequent actions.