cometchat-native-push

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill parses and acts on untrusted user-generated push payloads from CometChat (see §9d "Payload → navigation" and the navigateFromPayload code) — incoming notification data is ingested at runtime and used to drive navigation and API calls, so third-party content can influence agent behavior.