formio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill connects to third-party Form.io instances via the Membrane CLI and explicitly lists/run actions such as "List Submissions" and "Get Form" (see "Popular actions" and "Running actions") so the agent will fetch and read user-generated/untrusted form submissions which can influence subsequent actions.