webapp-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly supports navigating to arbitrary "accessible URL"s and running Playwright interactions (SKILL.md: "Navigate to URLs", examples using page.goto('http://...'), and test-helper.js capturing page console logs), so it can fetch and interpret untrusted third-party web content that could influence automated actions.