azure-messaging-webpubsubservice-py

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's client examples register event handlers like client.on("server-message") and client.on("group-message") that read e.data from Web PubSub connections (messages from external clients) — i.e., untrusted user-generated content delivered via the public WebPubSub service and tokens — so the agent would ingest arbitrary third-party messages at runtime.