wp-maps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows the agent using Membrane to list and run actions and to proxy arbitrary requests against a connected WP Maps API (e.g., "membrane action run --connectionId=CONNECTION_ID" and "membrane request CONNECTION_ID /path/to/endpoint"), which causes the agent to fetch and interpret potentially untrusted/user-generated content from third-party WordPress sites that can influence subsequent actions.