build-kernel-ts-sdk

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's examples and workflow (notably references/examples/deploy-and-invoke-app.md and references/examples/browser-screenshot.md) explicitly navigate and ingest arbitrary URLs (e.g., the app action uses page.goto(payload.url) and the Playwright/Stagehand examples run page.extract/page.act), so the agent will fetch and interpret untrusted public web content as part of its runtime workflow.