salesloft

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly shows runtime actions and proxy requests that read Salesloft data (e.g., "List Emails", "List Notes", "Get Note" and the Membrane proxy request to the Salesloft API), which fetches external, user-generated third-party content that the agent would read and could influence subsequent actions.