webhook-system

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Delivery worker explicitly fetches consumer-provided endpoint URLs (see deliverWebhook's fetch(endpoint.url) in Phase 4) and reads the response_status/response_body to drive retry, failure, and circuit-breaker decisions, so it ingests and acts on untrusted third‑party content from external developer endpoints.