telnyx-voice-streaming-python

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs streaming call audio to arbitrary WebSocket targets (stream_url in "Streaming start") and to start real-time transcription with third‑party engines (transcription_engine in "Transcription start"), and it processes webhook/transcription events as part of the workflow, so untrusted external content (WebSocket endpoints or third‑party transcription outputs) can be ingested and influence downstream AI/analysis actions.