countdown-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to fetch and run third‑party API actions (e.g., via "membrane action run" and "membrane request") and even lists actions like "Get Product Reviews" and "Get Seller Feedback" which pull public, user‑generated content that the agent is expected to read and could influence subsequent decisions.