slack-bot-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill clearly ingests untrusted user-generated content from Slack (e.g., app.event('app_mention') handlers and the Daily Standup "thread listener collecting responses" example) and external webhooks (PagerDuty HTTP endpoint) and uses that content to drive actions/decisions, which could enable indirect prompt injection.