aweber

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to fetch and run actions (e.g., get-subscribers, get-broadcasts) and to proxy arbitrary API requests via Membrane to an AWeber account (see "Popular actions" and "Proxy requests"), which will return user-generated/untrusted content that the agent is expected to read and could materially affect subsequent decisions or actions.