helpmetest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to navigate to and interact with arbitrary URLs and follow links on target sites (see SKILL.md "Navigate to URL" and references/phases/phase-1-discovery.md which require exploring pages and interactable elements via helpmetest_run_interactive_command), so it ingests untrusted public web content that can influence subsequent testing actions.