builderall-mailingboss

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs using Membrane to run actions and proxy requests to the Builderall Mailingboss API (see "Running actions" and "Proxy requests"), which causes the agent to fetch and interpret third-party, user-generated content (campaigns/subscriber data) from an external service and could therefore influence subsequent tool use or decisions.