lazada

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md instructs the agent to use the Membrane CLI to connect to Lazada and run actions (e.g., "Review", "Message", "Search" and the documented membrane action run flow) that fetch user-generated/third-party Lazada content which the agent is expected to read and could materially influence subsequent actions.