yanado

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to use Membrane action runs and proxy requests to fetch Yanado data (including "Tasks" and "Task Comments") from the third‑party Yanado API, meaning the agent will ingest and act on user-generated content from an external service that could include instructions influencing subsequent actions.