panda-doc-upload-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads and ingests user-generated PandaDoc content (list/get/download documents, and webhook payloads) as part of its workflows (see sections 3.3–3.7 and 4), and those third‑party document/webhook contents can be acted on to trigger follow-up automation, exposing the agent to potential indirect prompt injection.