d7-sms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow instructs the agent to fetch and act on data from the D7 SMS API (e.g., "Proxy requests... send requests directly to the D7 SMS API through Membrane" and general guidance to "interact with D7 SMS data"), which can include untrusted, user-generated SMS content that the agent would read and could influence subsequent actions.