typescript-client

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md demonstrates connecting to a remote SpacetimeDB instance (e.g., wss://maincloud.spacetimedb.com) and subscribing to tables (conn.subscriptionBuilder().subscribe([tables.user, tables.message]) and conn.db.user.onInsert(...) in the examples), which ingests user-generated/untrusted database rows that the agent reads and could influence its subsequent actions.