liferay

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows it connects to Liferay via Membrane and explicitly lists reading/managing user-generated content types (blog posts, wiki pages, message board messages, documents) and supports proxying arbitrary Liferay API requests, meaning the agent will fetch and interpret untrusted third-party content from those sites as part of its workflow.