playwright-excel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required validation step (SKILL.md step 6) and references/mcp-validation.md explicitly instruct opening the target URL, taking snapshots, executing/reading page values, and using vision results—so the agent will load and interpret arbitrary third‑party web pages as part of its workflow.