surveymonkey

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to fetch SurveyMonkey data (e.g., "Get Response", "Get Responses Bulk", "Get Response Details" and examples of running membrane action/request commands) which will ingest untrusted, user-generated survey responses from a public third-party service that the agent is expected to read and could materially influence subsequent decisions or actions.