gm-emit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "BROWSER DEBUGGING" section explicitly invokes an agent-browser with "navigate/click" and screenshot capabilities, which clearly allows the agent to fetch and interact with arbitrary web pages (open/public third-party content) that it would read and act on as part of its workflow.