whatsapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md instructs using the Membrane CLI to connect to WhatsApp and run actions or proxy requests (see "Connecting to Whatsapp", "Popular actions", and "Proxy requests"), which exposes the agent to untrusted, user-generated WhatsApp chats and profile content that the agent would read and could act on.