formstack

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows using Membrane to call Formstack actions like list-form-submissions and get-submission to fetch user-generated form submissions and fields from the third-party Formstack service, so untrusted external content would be read and could influence agent decisions.