imap-smtp-email

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's IMAP client (scripts/imap.js — e.g., check/fetch/search/download commands) connects to third‑party IMAP servers and fetches/parses email bodies, HTML, and attachments (untrusted user-generated content), which the agent consumes as part of its workflow and could influence subsequent actions.