tauri-app-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime workflow (SKILL.md: "Handle connect, message, and disconnect lifecycle events") expects the agent/app to ingest and act on WebSocket messages from configured hosts, and templates/capabilities.json explicitly lists a public endpoint (wss://echo.websocket.org), so untrusted third-party content can be received and influence behavior.