d2l-brightspace

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent connecting via the Membrane CLI to D2L Brightspace and running actions or proxy API requests (e.g., Discussion Forum posts, announcements, content modules) — user-generated third‑party LMS data the agent would read and could materially influence subsequent actions.