shareplay-activities

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's runtime examples show the app receiving and acting on arbitrary, user-generated content via GroupSessionMessenger messages and GroupSessionJournal attachments (see "Sending and Receiving Messages", "GroupSessionJournal: File Transfer" and examples in references/shareplay-patterns.md like the Collaborative Drawing Canvas and Quiz Manager), so untrusted third‑party content is ingested and can materially change behavior.