telnyx-voice-media-curl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts and plays arbitrary audio URLs (audio_url in the Play audio example) and exposes caller-generated recordings and their transcriptions via webhooks (e.g., call.recording.transcription.saved -> data.payload.transcription_text), meaning untrusted third-party content is ingested and delivered to the agent as part of the runtime workflow and could influence subsequent actions.