whoisfreaks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using Membrane to fetch data from the public WhoisFreaks API (see the "Proxy requests" example membrane request CONNECTION_ID /path/to/endpoint) and includes Website (Screenshot/Website Technologies) and WHOIS/Reverse WHOIS actions that ingest public website/WHOIS content, so the agent will read untrusted third‑party data that could contain instructions influencing later behavior.