playwright-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to "Navigate to the page" and to capture and use snapshots and evaluations (see SKILL.md recommended workflow and references/playwright-skill.md tools like browser_navigate, browser_snapshot, browser_evaluate), which means it will fetch and interpret arbitrary public web pages whose untrusted content can influence subsequent automated actions.