@1892/squadron

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches and reads user-generated content from the Squadron service (e.g., GET /squadrons/$SQUADRON_ID/knowledge/file and the /inbox polling script hitting ${SQUADRON_URL}/inbox), and that content is used by the agent to drive task actions and knowledge-base updates, so untrusted third-party content could indirectly inject instructions.