realgeeks-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests external, user-generated lead and activity data from RealGeeks (see the webhook receiver at app.post('/webhooks/realgeeks') and batch fetch functions like fetchAllLeads / the RealGeeks API links in Resources) and then reads/interprets that content to drive processing and to build context sent to ElevenLabs, so untrusted third-party content can materially influence actions.