test-driven-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Browser Testing with DevTools" workflow explicitly instructs the agent to navigate to pages and inspect/read browser content (DOM, console, network responses, screenshots), which are untrusted third-party page contents the agent is expected to use to diagnose and decide fixes.