fathom

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required scripts (e.g., scripts/get-transcript.sh and scripts/get-summary.sh) directly fetch user-generated meeting transcripts and summaries from https://api.fathom.ai/external/v1/recordings/{id}/transcript and /summary (and setup-webhook.sh can register public webhook endpoints), and those fetched transcripts/summaries are read and used by the workflow—allowing untrusted third-party content to materially influence behavior.