mailchimp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly uses the Mailchimp Marketing API (e.g., requests to https://$MAILCHIMP_SERVER_PREFIX.api.mailchimp.com/3.0/lists, /campaigns, /reports) to fetch campaign, template, and subscriber content—which is third-party/user-generated content the agent will read and that could influence actions like sending campaigns.