uipath-coded-apps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly automates and parses the UiPath cloud portal (see references/oauth-client-setup.md and references/debug.md and SKILL.md), using Playwright to navigate external pages, read DOM/network responses (capture Client IDs, scope rows, redirect URIs), and then take follow-up actions—i.e., it ingests live third‑party web content and uses it to drive tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill instructs installing and running Playwright (npm install playwright) into ~/.uipath-skills/playwright and runs a Node script that automates the UiPath portal; this requires fetching executable package code from the npm registry (https://registry.npmjs.org) at runtime, which will be executed locally and is a required dependency for the autonomous OAuth automation.