gleap-responder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests Gleap card analysis data originating from external users/support interactions (see "Gather context from the conversation" and the "⚠ Untrusted data boundary" note in SKILL.md), and uses that untrusted, user-generated content to construct reports and drive the MCP post action, so third-party content can influence agent behavior.