ah-fix-dom-flash

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly requires navigating to an arbitrary Page URL/Storybook (SKILL.md Input & Step 1) and injects scripts that read DOM nodes, textContent, attributes and styles (Step 3/5), so it consumes and acts on untrusted third‑party page content that can influence subsequent diagnostics and actions.