telegram-export

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to fetch and process messages and media from Telegram chats/channels using Telethon (e.g., client.iter_messages in Step 4/5 and the extract_links example), which ingests untrusted, user-generated third‑party content that can drive actions like downloads and URL extraction.