burst-sms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to use Membrane actions (e.g., "Get SMS Responses", "Get Message", "Get Contact") to fetch SMS replies and contact data from the external Burst SMS service — untrusted, user-generated third-party content that the agent is expected to read and that could materially influence subsequent actions.