maravilla-realtime

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows the agent subscribing to REN SSE events (RenClient.on) and WebSocket channels (RealtimeClient.subscribe) that deliver arbitrary KV/DB/storage/realtime/presence payloads originating from other users or external clients, meaning untrusted user-generated content is ingested and can drive behavior (e.g., triggering fetches, publishes, or server handlers).