action-items-todoist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly ingests user-generated meeting content from third-party services — querying Granola via mcporter call granola for meeting summaries and Grain via mcporter call grain.fetch_meeting_transcript for transcripts — and then uses that content to create/complete Todoist tasks and draft/send emails, so untrusted meeting text can materially influence tool actions.