telnyx-sip-integrations-javascript

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill's SKILL.md shows runtime API calls that retrieve and expose user-generated/untrusted content — notably the recording_transcriptions endpoints (GET /recording_transcriptions and GET /recording_transcriptions/{id} which return transcription_text) and media upload/download flows (POST /media with a media_url and GET /media/{media_name}/download) that ingest arbitrary external URLs or customer-provided recordings, which the agent is expected to read/console.log and could therefore influence subsequent actions.