nostr-relay-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly accepts and parses arbitrary client-sent messages (EVENT, REQ, AUTH, etc.) over WebSocket as part of its core workflow (see "Set up the WebSocket server" and "Implement the NIP-01 message protocol" / event validation and filter matching sections), ingesting untrusted, user-generated content that is then validated, stored, broadcast, and used to drive subscriptions and actions—allowing third-party content to influence relay behavior.