docusign

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md instructs the agent to use Membrane to call DocuSign actions like "Download Document", "Get Template", and "Get Envelope Form Data", which fetch arbitrary user-uploaded/untrusted DocuSign content that the agent would read and that could materially influence subsequent actions.