textit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md instructs the agent to run Membrane actions and use the "membrane request CONNECTION_ID /path/to/endpoint" proxy to fetch data from the TextIt API (e.g., Messages, Reports, Contacts), which are third‑party, user-generated/untrusted content the agent would read and could use to drive follow-up actions.