moai-playwright-webapp-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches external Context7 library docs (e.g., calls to context7.get_library_docs with library_id "/microsoft/playwright" in SKILL.md and templates) and also instructs Playwright to navigate to and scrape arbitrary webapp URLs (e.g., analyze_webapp_with_context7, generate_smart_selectors, page.goto/webapp_url in examples), so untrusted third-party content can be ingested and used to drive test-generation and orchestration decisions.