httpsms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs using Membrane actions like "List Messages" and "List Message Threads" and the membrane request proxy to fetch content from the HttpSMS (bulksms.com) API, meaning the agent will ingest untrusted, user-generated SMS content that can influence subsequent actions (e.g., updating threads or sending messages).