lessonspace

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches user-generated content from the third-party Lessonspace service via Membrane (e.g., the "Get Session Transcript" and "Get Session Recording URL" actions and the "membrane request" proxy described in SKILL.md), so the agent would read/interprete untrusted third-party transcripts/recordings that could influence subsequent actions.