bytestash

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill programmatically fetches and displays user-created content from a ByteStash web service (see scripts/bytestash-api.sh and references/api-endpoints.md which call GET /api/v1/snippets, GET /api/public/snippets and GET /api/share/{id}, and SKILL.md instructs using get/view-share), meaning untrusted/third‑party snippet content is ingested and used as part of the agent workflow and could materially influence subsequent actions.