typescript-sdk

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This SDK explicitly connects to public Nostr relays (e.g., SKILL.md's ApplesauceRelayPool with wss://relay.contextvm.org and the documented relay resolution using discoveryRelayUrls / CEP-17 relay-list metadata) and declares announcement kinds like PROMPTS_LIST_KIND and announcementMethods that cause ingestion of remote "prompts"/"tools", so arbitrary user-generated relay events are read and can materially influence behavior.