chattermill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent will call Chattermill via Membrane (see "Proxy requests" and "Working with Chattermill" / action run examples) and thus fetch and interpret user-generated feedback from a third‑party API, which could contain untrusted instructions that influence subsequent actions.