klaxoon

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent fetches Klaxoon data (e.g., list-board-ideas, get-board-idea) and can proxy arbitrary Klaxoon API endpoints via Membrane, meaning it will ingest untrusted/user-generated third‑party content (boards/ideas) that the agent is expected to read and which could influence subsequent actions.