cloudflare-email-routing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Email Workers explicitly parse and act on arbitrary incoming emails (e.g., message.raw parsed with postal-mime in src/email.ts and the "Parse and Store", "Auto-Reply", and "Conditional Routing" patterns), which are untrusted, user-generated content from the public Internet and are read/interpreted as part of the worker's workflow.