helpninja

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill instructs the agent to fetch and interact with HelpNinja data (e.g., tickets and knowledge-base entries) via Membrane CLI commands like "membrane action run" and "membrane request CONNECTION_ID /path/to/endpoint", which will ingest untrusted, user-generated content from the HelpNinja API that can influence subsequent actions.