workers-runtime-apis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's templates and examples (e.g., fetchWithRetry/fetchParallel/proxyRequest in templates/fetch-patterns.ts and multiple fetch/response parsing examples across references, plus the WebSocket ChatRoom in templates/websocket-handler.ts) fetch and stream data from arbitrary external URLs and accept/parse user-provided WebSocket messages, i.e., untrusted third‑party/user‑generated content that the worker code reads and interprets as part of its workflow.