discord-list

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly uses network access to Discord (requires DISCORD_USER_TOKEN and "Network access to Discord" in SKILL.md) to list servers, channels, and DMs—user-generated, untrusted third‑party content that the agent reads/interprets as part of its workflow, enabling indirect prompt injection.