telegram-openapi-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Core Workflow and Runtime Validation in SKILL.md show it polls the public Telegram API (post:/getUpdates via https://api.telegram.org and uxc subscribe) and ingests arbitrary Telegram updates (user-generated messages) as part of its runtime flow, which could contain instructions that materially influence subsequent API actions like sendMessage or webhook operations.