documenso-data-handling

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads and processes user-provided documents and metadata from Documenso (see implementation-guide.md calls like client.documents.downloadV0, client.documents.findV0 and use of doc.recipients/doc.status) so untrusted third-party content could influence deletions, archiving, DSAR/erasure decisions and other actions.