nova-act

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Browser CLI and examples (SKILL.md and references/browser_cli.md) explicitly instruct the agent to navigate arbitrary external URLs and use commands like execute/extract/get-content/ask that read and act on web page content, so untrusted third‑party web pages can be ingested and influence subsequent actions.