zoho-desk

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md instructs using Membrane actions like "list-tickets" and "get-ticket" to fetch ticket bodies and comments from Zoho Desk (user-generated third-party content), which the agent is expected to read and could use to decide or trigger follow-up actions via the listed create/update actions.