whatsapp-cloud-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly ingests arbitrary user-generated WhatsApp content via webhooks (see "Webhook Handler Principal" in references/automation-patterns.md and the /webhook POST handler in SKILL.md), parses message/interactive payloads and referral URLs, and forwards that content to handlers and the Claude API to drive routing, escalation, and outbound actions—so untrusted third-party content can materially influence behavior.