caldav-calendar

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill requires running vdirsyncer sync to fetch CalDAV calendar data from third-party providers (e.g., https://caldav.icloud.com/, https://caldav.fastmail.com/, Nextcloud/Google entries shown in SKILL.md), and khal then reads/searches those user-generated calendar event contents as part of its normal workflow, which could allow instructions embedded in events to influence subsequent behavior.