engineering-game-backend-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill clearly ingests untrusted, user-generated content via the WebSocket endpoint (/ws) (see boilerplate/server.ts handling "room_message" and "action" messages) and via cross-instance Redis pub/sub (ARCHITECTURE.md and boilerplate snippets), and those messages are parsed and used to drive game logic and broadcasts (room-manager.ts), so third‑party content can influence runtime behavior.