akismet

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill invokes Akismet via Membrane actions such as "check-comment-for-spam" and "submit-spam/ham", which clearly ingest and act on untrusted, user-generated comment content from third-party websites through the Akismet API (accessible via the documented membrane connect/action run workflow), so third-party content can influence agent decisions and tool use.