imap-smtp-email

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's IMAP client (scripts/imap.js, documented in SKILL.md/README.md) fetches and parses email bodies from arbitrary IMAP servers (user-generated/untrusted third‑party content) which the agent ingests and uses to drive actions like fetching, marking read/unread, or sending replies, enabling indirect prompt injection.