integrate-whatsapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to receive and process untrusted, user-generated WhatsApp content via phone-number webhooks (see references/webhooks-overview.md and references/webhooks-event-types.md) and to handle WhatsApp Flows data endpoints (references/whatsapp-flows-spec.md), which the agent must parse and act on (update databases, trigger messages, route screens), so third-party message content can materially influence actions.