bilionis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md instructs using Membrane actions and proxy requests (e.g., "membrane action run" and "membrane request CONNECTION_ID /path/to/endpoint") to retrieve messages/leads from Bilionis, which are user-generated third‑party data the agent will read and could influence subsequent actions.