telnyx-voice-gather-java

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly starts an AI assistant and ingests caller-provided audio/text via endpoints like gather_using_ai and gather_using_audio (audio_url) and receives webhook events (e.g., CallAIGatherEnded / message_history) described in SKILL.md, so untrusted, user-generated content is read and used to drive assistant behavior.