salvo-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill accepts and parses messages from arbitrary WebSocket clients (see "Chat Room Example", "WebSocket with Query Parameters", and "handle_json_messages" in SKILL.md), ingesting untrusted user-generated content that is interpreted to route/broadcast messages and change room membership, so third-party messages could materially influence behavior and enable indirect prompt-injection-like effects.