cloudfiles

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly shows the agent making API/proxy requests to CloudFiles and handling "File Content" and "File Metadata" (see the "Proxy requests" and "File" sections and the membrane request examples), which means the agent will fetch and read user-provided third-party content that could influence subsequent actions.