test-driven-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md "Browser Testing with DevTools" workflow explicitly instructs the agent to "Navigate to the page" and to read DOM, console, and network data via DevTools (untrusted browser content), so the agent will ingest and act on open/untrusted page data as part of its runtime debugging workflow.