server-websocket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md shows the gateway accepts and acts on arbitrary client-sent WebSocket events (e.g., socket.emit("subscribe", ...), "s:notification-change" handling, and broker.emit("$broadcast.socket.emit", { data: { eventName, eventParams, room } }) ), which are untrusted/user-generated payloads from external clients that the service parses and uses to drive room routing and emits—so third-party content can materially influence behavior.