litestar-websockets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly requires implementing receive/send loops and validating incoming messages (see "Implement receive/send loops" and the example using socket.receive_text()), which means the skill ingests untrusted user-generated WebSocket messages that could contain instructions influencing processing.