mindspun

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md instructs using the Membrane CLI to connect to Mindspun and run/list actions (e.g., "membrane action list --connectionId=CONNECTION_ID --intent ..." and "membrane action run --connectionId=..."), which retrieves Mindspun assistant messages and files (user-generated third‑party content) that the agent will read and which can influence subsequent actions.