cometchat-ios-push

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's AppDelegate and Notification Service Extension explicitly parse untrusted remote notification payloads (userInfo["message"]) in sections 4 and 7 of SKILL.md and even download arbitrary image URLs from the payload via downloadAndAttachImage (URLSession), meaning third-party/user-generated content is fetched and used to set notification content and trigger navigation/behavior.