flippingbook

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md shows the agent using the Membrane CLI to run actions like list-publications, get-publication, list-publication-sources and list-tracked-links against FlippingBook — which fetches user-generated publication content and shared links from a third-party service that the agent is expected to read and act on, allowing that external content to influence subsequent actions.