apploi

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill instructs the agent to use the Membrane CLI to run actions and to proxy arbitrary requests to the Apploi API (see "Running actions" and "Proxy requests" in SKILL.md), which fetches applicant/job/form data and other user-generated content from an external third-party service that the agent is expected to read and act on, enabling indirect prompt injection.