device-magic

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to fetch and read Device Magic data (e.g., "List Submissions", "Create/Update Resource", and the "membrane request" proxy) which pulls user-generated form submissions and resources from the third‑party Device Magic API, so untrusted third‑party content can be ingested and could influence subsequent actions.