web-js-reverse-master-flow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly requires providing a target URL/page and mandates using chrome-devtools-mcp and other MCPs to capture live Network/DOM/Runtime/code samples from the target site (e.g., Phase 0: “强制使用 chrome-devtools-mcp 或 $js-reverse 建立浏览器基线样本” and the input block "URL 或目标页面"), meaning the agent will fetch and interpret arbitrary third‑party web content which directly drives phase selection and actions.