telegram-bot-api-business-connections-and-suggested-posts

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly lists event types and API surface such as "business_message", "edited_business_message", and business read/delete/profile methods, indicating the agent will ingest and act on untrusted Telegram user-generated messages as part of its workflow, which could carry indirect prompt-injection risk.