design-md-chrome-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This extension's content script (content.js) and manifest (matches: ["<all_urls>"]) explicitly extract styles from any visited website's DOM to generate DESIGN.md/SKILL.md which are then used as inputs for AI coding tools (see "Basic Extraction Workflow", extractDesignTokens(), and "Integration with AI Coding Tools"), so arbitrary public web pages can influence agent behavior.