ah-fix-dom-flash

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires navigating to an arbitrary page URL (see SKILL.md "Page URL or description" and the chrome-devtools navigate_page commands) and injects scripts that read DOM nodes and text (e.g., scripts/flash-detector.js uses document.querySelectorAll and el.textContent), so it ingests untrusted third‑party page content which can influence diagnostic decisions and next actions.