firefox-extension-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's reference file references/mdn-api-urls.md explicitly lists public MDN and Extension Workshop URLs and instructs "Use these URLs with WebFetch" so the agent is expected to fetch and read third‑party web pages (public documentation) as part of its documentation-lookup workflow, which could allow indirect prompt injection from external content.