cloudflare-worker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill includes runtime handlers that ingest arbitrary user-provided HTTP/WebSocket payloads (e.g., app.post('/webhook') in resources/queues-testing.md, file uploads/downloads in resources/storage.md, and the ChatRoom webSocketMessage in resources/durable-objects.md), so it clearly consumes untrusted third‑party content as part of normal processing.