modeck

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using Membrane action list/run and the "Proxy requests" flow to fetch data from MoDeck (a social-media platform) via arbitrary API paths, which means the agent will ingest untrusted, user-generated third-party content (posts/conversations) and can act on it.