evernote-enterprise-rbac

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly calls the Evernote API (e.g., noteStore.listSharedNotebooks() in SKILL.md and listBusinessNotebooks()/getBusinessNoteStore() in references/implementation-guide.md), ingesting user-generated Evernote notebook and sharing metadata which the agent reads and uses to decide permissions and subsequent actions, so untrusted third-party content can materially influence behavior.