sse-streaming

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill exposes the agent to untrusted user-generated content because the Express endpoints (/broadcast and /notify) accept arbitrary POST bodies which are then streamed to connected clients via the /events SSE endpoint and parsed/displayed by the client handlers.