chrome-devtools-cli
Warn
Audited by Snyk on Jun 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The required workflow drives Chrome DevTools to load a user-supplied URL (e.g.,
chrome-devtools new_page "https://example.com"), and the daemon will ingest the resulting page’s DOM/accessibility content as readable text for snapshot-based interactions—i.e., public web content fetched at runtime.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata