customerio-core-feature

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Feature 5 Data Pipeline Integration (handleCDPWebhook) explicitly ingests webhook events from external CDP sources like "segment", "rudderstack", "mparticle", or "custom" and uses event.traits/properties to call identify/track, so untrusted third‑party content can directly drive actions.