calcom-access

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's mandatory workflow and commands in SKILL.md explicitly call the Cal.com API/instance (e.g., "$CALCOM_CLI bookings list --json", "bookings get", and the referenced calcom-api-setup.md) and therefore ingests user-generated/untrusted third-party content (bookings, event descriptions, API responses) that the agent is expected to parse and that can materially change subsequent actions (create/update/cancel bookings).