websocket-realtime-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill ingests and displays arbitrary user-generated content from WebSocket events—e.g., the useChat hook listens for 'new-message' and appends message.content (rendered in ChatRoom), and useNotifications listens for 'notification' and shows notification.message—so it clearly consumes untrusted third-party input as part of its runtime workflow.