telegram-bot-api-stickers-custom-emoji-and-reactions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill’s SKILL.md explicitly references retrieving and handling user-generated Telegram content (e.g., “sticker-set retrieval and management methods” and “reaction update families” / “Reaction handling”), meaning the agent will ingest and act on untrusted third-party messages/stickers/reactions from users which could contain instructions that influence behavior.