rf-selenium

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation and required workflows (SKILL.md and references) instruct tests to Open Browser / Go To arbitrary URLs (e.g., ${URL}, ${BASE_URL}, examples like https://example.com and https://the-internet.herokuapp.com) and use keywords that Get Source, Get Text, Wait Until Page Contains, Execute JavaScript, and Switch Window, meaning it clearly fetches and interprets untrusted public web content which can influence subsequent actions.