kanbanize

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to call Kanbanize via Membrane actions such as "list-comments" and "list-cards" and to use "membrane request" proxy endpoints, which fetch user-generated content from an external Kanbanize instance that the agent will read and can materially influence subsequent actions.