phaxio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to run actions like "DownloadFax" and "DownloadMedia" via the Phaxio/Membrane APIs which fetch user-generated fax/media content from a third-party service (phaxio) that the agent would receive and could read/interpret, creating a vector for indirect prompt injection.