telnyx-messaging-javascript

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests user-generated inbound SMS/MMS webhook payloads (see "Webhook Verification" and the "Inbound Message" webhook payload fields in SKILL.md / references/api-details.md), which the agent is expected to parse and can drive follow-up actions (e.g., auto-responses), so untrusted third-party content could influence behavior.