bun-server-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The gateway's @OnMessage handlers (e.g., handleMessage and the browser client example using ws.send / JSON.parse) accept and parse arbitrary text/JSON from WebSocket clients, i.e., untrusted user-generated content from external connections.