hubspot-core-workflow-b

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly retrieves and processes user-generated HubSpot form submissions (see getFormSubmissions and submitForm using the Forms API GET /form-integrations/v1/submissions/forms/{formGuid} and related flows in SKILL.md), and that untrusted content is parsed and used to create tickets, tasks, and list membership—so arbitrary instructions in those submissions could influence agent actions.