haah

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and displays user-generated answers from the external API at https://api.haah.ing/v3 (notably via GET /dispatch?pending=true and GET /inbox) and instructs the agent to read and act on that content (draft replies, offer connections, decide to send/skip), so untrusted third-party text can materially influence decisions and tool use per the SKILL.md workflows.