slicknode

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly issues GraphQL queries and proxied HTTP requests to a Slicknode instance via Membrane (see "GraphQL Query — Execute a GraphQL query" and "membrane request CONNECTION_ID /path/to/endpoint" in SKILL.md), which causes the agent to fetch and interpret potentially user-generated/untrusted CMS content as part of its workflow.