google-my-business

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly accesses Google My Business data via the Membrane CLI (see SKILL.md "Working with Google My Business" and "Popular actions" like List Answers, List Questions, Reviews/Posts), which are public/user-generated third-party contents that the agent is expected to read and can influence actions (e.g., creating/upserting answers), allowing indirect prompt injection risks.