n8n-expression-syntax

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly instructs the agent to read and act on untrusted user-provided webhook data (see "Webhook Data Structure" / {{$json.body.*}}) and on responses from public HTTP Request nodes (e.g., OpenStreetMap / Weather API examples), which the agent would ingest and use to drive subsequent node actions.