worker-logs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using "npx wrangler tail" to stream Cloudflare Worker logs for openagents.com / openagents.com/api (real-time request paths and console.log output), which are external, user-generated/untrusted inputs the agent is expected to read and use for debugging, so those logs could contain content that materially influences actions.