telnyx-ai-inference-javascript

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly supports embedding website content from arbitrary URLs ("POST /ai/embeddings/url" — "Embed website content from a specified URL... crawls and loads content") which ingests untrusted public web pages that the agent will read and use for embeddings/search/summaries, allowing third-party page instructions to influence subsequent model behavior.