white-swan

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent uses the Membrane CLI to connect to the White Swan API and run actions or proxy requests (see "Running actions" and "Proxy requests"), which requires fetching and interpreting potentially user-generated White Swan data that could include instructions influencing subsequent actions.