wecom-smartsheet-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill accepts document URLs (e.g., "url": "https://doc.weixin.qq.com/smartsheet/xxx") as required input for smartsheet_get_records (see SKILL.md and references/api-get-records.md) and the typical workflow explicitly reads those records to determine record_ids and subsequent add/update/delete actions, meaning it fetches and ingests user-generated third-party document content that can materially influence tool actions.