kingsumo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md instructs the agent to use the Membrane CLI to connect to KingSumo and run actions like "list-contestants" and "list-giveaways", which fetch user-generated giveaway entries and other third-party KingSumo content that the agent is expected to read and act on, creating a clear pathway for indirect prompt injection.