wachete

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill integrates with Wachete, which "track[s] changes on websites" (SKILL.md top) and instructs the agent to run Membrane actions (e.g., action run / view "Change", "Website", "Element" outputs) so the agent will read/interact with untrusted public web content collected from arbitrary sites; this could allow indirect prompt injection via webpage content returned in action outputs.