documenso-incident-runbook

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The runbook explicitly instructs fetching and interpreting public third‑party content (e.g., curling https://status.documenso.com/api/v2/status.json and consulting Documenso Discord and GitHub Issues links) as part of its required diagnostic workflow, which exposes the agent to untrusted user-generated content that could influence decisions and actions.