clickhelp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documented actions (e.g., "Search Portal" and "Get Topic" which "returns ... HTML content") and the Membrane proxy ("membrane request") explicitly fetch content from a ClickHelp portal (third-party/user-authored documentation), which the agent would read and could influence follow-up actions like update-topic, publish-project, or proxy requests.