maintainx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly connects to a user's MaintainX tenant via the Membrane CLI and uses actions like "action list" and "action run" (see "Connecting to MaintainX" and the action list/run examples in SKILL.md) to fetch and interpret user-generated MaintainX data (tasks, comments, procedures), which could contain untrusted instructions that influence agent behavior.