strava

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly fetches user-generated content from Strava's public API (e.g., the "List Activity Comments" endpoint GET https://www.strava.com/api/v3/activities//comments and club/segment/leaderboard endpoints), which the agent is expected to read as part of its workflow and could materially influence follow-up actions like creating/updating activities.