dark-mode-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (SKILL.md steps "Open the App" and "Inspect for Issues") requires using browser_navigate to load arbitrary target pages and to read/inspect the page DOM and browser_snapshot/screenshots, so it ingests untrusted public web content that could contain instructions influencing clicks/JS execution and subsequent actions.