momentive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to interact with Momentive (survey) data via the Membrane CLI (e.g., "Use when the user wants to interact with Momentive data", "Survey
• Response", and commands like membrane action run ...), which means the agent will fetch and read user-generated survey/response content from a third-party service that could contain untrusted instructions influencing subsequent actions.