cloudflare-durable-objects

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly accepts and processes arbitrary user-generated input (untrusted third-party content) in its runtime WebSocket/HTTP handlers — see the WebSocket Hibernation API fetch() upgrade and webSocketMessage() JSON parsing/broadcast logic — so the agent would read and act on untrusted content.