twilio-communications

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md includes Flask webhook handlers (e.g., /webhooks/whatsapp, /webhooks/twilio/sms/incoming and incoming TwiML endpoints) that ingest arbitrary user-generated SMS/WhatsApp/call content and then parse/process that content (process_whatsapp_message / process_incoming_sms) to determine responses and actions, which exposes the agent to untrusted third-party input that can influence behavior.