erpnext-errors-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly ingests and processes untrusted third-party data—e.g., the stripe_webhook handler parses incoming webhook payloads, and several examples (call_external_api, ShippingAPI, ExternalAPIClient) perform requests to configurable external endpoints and parse response.json—so the agent would read/interpret external, potentially user-controlled content as part of its workflow.