whatsapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows the agent will fetch and handle WhatsApp user messages and profiles via Membrane (see "Chat/Message" actions and "Get Business Profile" and the "Proxy requests" section), meaning it ingests untrusted, user-generated third‑party content that can influence subsequent actions.