bitrix24-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly pulls and processes user-generated Bitrix24 content (e.g., event.offline.get in scripts/offline_sync_worker.py and chat/event methods listed in references/catalog-comms.md and references/bitrix24.md), which the agent reads and can drive subsequent API calls and actions, so untrusted third-party content can influence behavior.