telegram-bot-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and acts on arbitrary user-generated Telegram messages and webhook updates (e.g., "bot.on('text', (ctx) => { ctx.reply(You said: ${ctx.message.text}); });" and webhook handling via bot.webhookCallback('/webhook')), meaning untrusted third-party content from Telegram users can be read and influence bot actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes Telegram Payments integration: it shows code using ctx.replyWithInvoice with a provider_token, currency, and prices, and handles successful_payment to activate premium. That is a concrete payment gateway/payment-processing flow (creating invoices and handling payments), and the collaboration section also routes "payments|subscription|billing" to fintech-integration. This is a specific, explicit financial execution capability (creating/handling payments), not a generic tool.