phaxio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md explicitly instructs using actions like DownloadFax/DownloadMedia and the membrane request proxy to fetch content from Phaxio (a third‑party service hosting user-generated faxes/media), which the agent is expected to read/interpret and could let embedded instructions in that untrusted content influence subsequent tool calls.