telegram-polling

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly polls the public Telegram Bot API (getUpdates) and downloads user-uploaded files, then passes user message text and file content into spawned agent TaskCreate descriptions and outbox workflows (see the /ask TaskCreate and handleFileUpload TaskCreate in SKILL.md), so untrusted Telegram user content is consumed by agents and can materially influence task actions.