playwright-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill navigates to and loads arbitrary user-provided or auto-detected URLs (see detectDevServers()/TARGET_URL and numerous page.goto(...) examples) and also inspects external links and page content (e.g., link-checking loop using page.request.head(href), helpers.extractTableData, page.title), so it clearly ingests untrusted third-party web content.