multiplayer-websocket
Warn
Audited by Snyk on Feb 27, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). The skill's useMultiplayer hook explicitly connects to a WebSocket server (configured via NEXT_PUBLIC_MULTIPLAYER_URL or the resolved serverUrl in reference.md / multiplayer-server.ts) and ingests real-time, user-generated player messages which are parsed and used to update game state and behavior, exposing the agent to untrusted third-party content.
Audit Metadata