dock-certs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows it uses Membrane to connect to the third-party Dock Certs service and explicitly instructs running membrane action list and membrane request CONNECTION_ID /path/to/endpoint (Membrane proxy to Dock Certs API), meaning the agent will fetch and interpret tenant/user-provided Dock Certs data from an external service which can influence subsequent actions.