sales-qwilr-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests user-generated Qwilr content and events (see SKILL.md Step 3b "Create pages", Step 3c "Subscribe to webhook events", and references/qwilr-api-reference.md which shows GET /pages and webhook POSTs), and those webhook/page contents are read and used to drive actions like updating CRMs or posting to Slack—so untrusted third‑party content can materially influence agent behavior.