companycam

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill calls CompanyCam via Membrane and explicitly exposes actions that list and retrieve user-generated content (photos, comments, projects) and can upload from arbitrary URLs (see "Popular actions" like List Photos/Get Photo/Create Photo and the "Proxy requests" section), so the agent will consume third-party user content that can influence subsequent actions.