api-integration-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's core workflow clearly ingests and acts on untrusted, user-generated third-party content—e.g., webhook payloads in app.post('/webhooks/stripe'), realTimeSync/fullSync fetching Google Calendar events, and Slack/Google API calls (conversations.list, events.list) shown in SKILL.md—which the code reads and uses to drive actions (processing events, upserts, sending messages), so third-party content can materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes a Stripe integration with code to create and cancel subscriptions, handle payment_intent webhooks, and verify Stripe webhook signatures. Stripe is a payment gateway and the examples show sending payment-related API calls (creating subscriptions, returning payment intent client_secret, processing payment success). This is a specific, built-in financial integration (not just a generic HTTP client), so it grants direct financial execution capability.