evolution-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill receives untrusted, user-generated WhatsApp content via webhooks/events (e.g., MESSAGES_UPSERT in SKILL.md and references/events.md) and exposes endpoints/integrations (OpenAI, Typebot, Dify) that are expected to process those messages and drive subsequent actions, so third-party content can influence agent behavior.