browser-use
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该技能在运行时会接收用户提供的
materialUrl(公开网页 URL)并进行网页浏览/抓取,将页面可见文本等“外部网页自由文本”读入并拼接到 LLM 上下文(典型间接提示注入来源:公共 web 内容)。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata