salesmsg

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly interacts with Salesmsg data (e.g., "Manage ... Conversations") and documents using Membrane's proxy requests to call arbitrary Salesmsg API endpoints, which exposes the agent to untrusted, user-generated message content from Salesmsg that could influence decisions or tool use.