supabase-realtime

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md shows the agent subscribing to and processing user-generated third-party data via Supabase realtime channels (e.g., 'postgres_changes' subscriptions and 'broadcast'/'presence' events), so arbitrary external messages can be ingested and influence behavior.