pubnub-app-developer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's examples and workflow (e.g., SKILL.md and references/publish-subscribe.md) show subscribing via pubnub.subscribe and addListener to receive and process channel messages—which are arbitrary, user-generated PubNub messages from third-party clients—so the agent would read untrusted runtime content.