n8n-hub

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to call the n8n public REST API (e.g., "$N8N_API_BASE_URL/workflows" and "$N8N_API_BASE_URL/executions") to fetch workflow and execution data, which is user-generated/untrusted content that the agent would read and could materially influence subsequent management actions.