webmcp-gen

This module behaves like a test/validation harness, not a typical malware loader. However, it contains high-impact trust-boundary actions: it injects and executes artifact-controlled JavaScript (webmcp.init.js) in a headless browser and navigates to an unvalidated URL from manifest.json. It also writes tool outputs/errors verbatim into JSON and Markdown reports without sanitization, which can enable report poisoning in downstream tooling. If artifacts/manifests are not fully trusted, the security risk is elevated despite the absence of explicit malicious behavior in this file.