hwc-realtime-streaming

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Hotwire Combobox pattern (references/2024-03-12-hotwire-combobox-with-real-time-data.md) shows connecting to an external WebSocket (e.g., wss://example.com/ws) and parsing arbitrary JSON messages to update the UI, which clearly ingests untrusted third-party data for runtime behavior.