wix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to run Membrane actions and proxy requests against the WIX eCommerce API (e.g., "list-products", "get-order" and the "membrane request" proxy) which will return user-generated/untrusted store content (product descriptions, order notes, etc.) that the agent is expected to read and that can influence follow-up actions like update-order or delete-product.