salvo-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill accepts and processes arbitrary user-supplied WebSocket messages (e.g., in handle_socket, broadcast_message, handle_json_messages, the chat WebSocket handler and the index/chat HTML ws.onmessage code that consumes and displays e.data), so it clearly ingests untrusted, user-generated third-party content as part of its runtime workflow.