formdesk

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md shows it runs Membrane actions that retrieve Formdesk form submissions and uploaded files (e.g., "List Form Results", "Get Form Result", "Get File") and instructs the agent to run and read the action outputs, meaning untrusted user-generated form content from Formdesk can be ingested and influence subsequent actions.