paypal-import

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md) explicitly asks the agent to parse a user-supplied PayPal CSV downloaded from paypal.com and to read/interpret fields like Name, Subject/Item Title and notes for categorization and import, which are third-party/user-generated contents that could carry instructions influencing categorization or import actions.