connect-apps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill connects Claude to external apps via the Composio Tool Router (e.g., Gmail, Slack, Discord, GitHub, Notion and "1000+ more") and executes actions that return results, meaning user-generated, third‑party content from those services can be ingested and interpreted by the agent.