clicksend-sms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to use Membrane actions like "get-inbound-sms", "get-sms-history", and other ClickSend actions (see "Popular actions" and the "Running actions" / "Get Inbound SMS" sections) which fetch user-generated SMS content from the external ClickSend service that the agent is expected to read and could materially influence subsequent decisions or actions.