Realtime API prevent session.update

[dimkasb]

We are going to to use Realtime API, but we found the issue related to session update.
We use WebRTC implementation, and client connects to openai via browser.
But potential hacker can modify instructions/tools to abuse API with session.update event.

How can we prevent session.update ?

[LeCampusAzure]

I totally agree with this issue. To add more: even read operations are risky, as any user can read session.created message including system prompt.
The webrtc channel should include audio and text messages between user and ai only. A separate 'system' web socket channel for any other message type should be provided so that it can be driven from a secure backend.