dropbox

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to run actions such as search-files, get-temporary-link, list-shared-links and retrieve file contents from a Dropbox connection via Membrane, meaning the agent will ingest user-generated/untrusted files or shared links whose content could contain instructions that influence subsequent actions.