applesauce-common

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly processes raw Nostr events and fetches/consumes public user-generated content (e.g., castEvent(event,...), eventStore.event(parentId).toPromise(), and blueprints that extract hashtags/mentions/nostr:npub/nostr:note and external emoji URLs), so it ingests untrusted third-party content from the public Nostr network.