telegram-read

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This skill instructs the agent to read and output Telegram message contents verbatim (Markdown/JSON), so any API keys, tokens, or passwords present in those messages would be included in the model's output and could be exfiltrated.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill reads and searches locally synced Telegram messages (user-generated content from Telegram groups) as part of its workflow, meaning the agent ingests third-party social-media content from Telegram.