basecamp-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The CLI clearly fetches and displays user-generated Basecamp content from the Basecamp API (e.g., message content in src/commands/messages.ts and campfire lines in src/commands/campfires.ts), exposing the agent to third-party untrusted text that users will read and could influence subsequent actions.