pitfalls-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes server and client message-handling code (ws.on('message') and handleMessage) that parses and acts on arbitrary JSON messages received over WebSocket connections—i.e., untrusted, user-generated network input—which could carry indirect prompt-injection content.