roster-server

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts and routes arbitrary incoming HTTP requests and Socket.IO messages from the open web (see "Request Flow" and the "Handler Patterns" / Socket.IO examples in SKILL.md), meaning untrusted user-generated content is ingested and can influence request handling and subsequent actions.