guru

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads and acts on third-party Guru content via Membrane actions shown in SKILL.md—e.g., "search-cards", "get-card", and "list-card-comments" (and proxy requests to Guru APIs)—which can return user-generated/untrusted content that the agent is expected to interpret and could influence subsequent actions.