push-notification-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill ingests external push notification payloads from Firebase Cloud Messaging (see references/firebase-cloud-messaging-setup.md and the Android/iOS handlers) and directly acts on untrusted fields like data.deepLink and data.type (navigating to deep links and triggering syncData), meaning third-party notification content can materially change runtime behavior.