squarespace

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow uses the Membrane connector to connect to Squarespace and run actions that read and manage site Pages/Blocks, Products, Orders, Customers, and Campaigns—i.e., it fetches and ingests user-generated/public website content from third-party Squarespace sites (see "Working with Squarespace" and the "membrane action run" / "connect" instructions in SKILL.md), which the agent is expected to read and act on.