neuronwriter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and interacts with third-party NEURONWriter content (e.g., "Article Draft", "Content Brief", "Competitors") via Membrane commands such as "membrane action run" and the proxy example "membrane request CONNECTION_ID /path/to/endpoint", so the agent will read and act on untrusted/user-generated data from an external service.