rails-mailbox

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill ingests and processes untrusted, user-generated inbound email content (e.g., mail.decoded, mail.attachments) as part of its workflow — shown in SKILL.md and references/examples.md (SupportMailbox and FeedbackMailbox) where emails are parsed and used to create records — which could allow indirect prompt injection via crafted emails.