doppel-block-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly requires connecting to external space servers and consuming space-provided, user-generated data (see "Themes are set per space by the Doppel Agent. Check the theme..." and the references to GET {serverUrl}/api/agent/mml and GET {serverUrl}/api/agent/occupants and the Doppel Hub link), so untrusted third-party MML/occupant content can influence building decisions and tool use.