formidable-forms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly lists actions like "Get Entry" and "List Entries" (under "Popular actions") which retrieve Formidable Forms entries via the Membrane connector — those entries are user-submitted/untrusted third-party content that the agent would ingest and could materially influence follow-up actions.