telegram

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly polls the Telegram Bot API (see SKILL.md and scripts/check_messages.py) to fetch and display incoming messages, photos, and documents from arbitrary Telegram users (untrusted, user-generated content) which are then used to discover chat IDs and can influence subsequent send_message actions, creating a vector for indirect prompt injection.