supabase-audit-realtime

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill directly connects to and subscribes to Supabase Realtime WebSocket endpoints (e.g., wss://[project].supabase.co/realtime/v1/websocket) and ingests broadcast/postgres/presence events (user-generated notifications, emails, profile data) which are untrusted third-party content the agent is expected to read and interpret.