chrome-devtools

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts explicitly navigate to and scrape arbitrary public URLs (e.g., node navigate.js --url https://example.com, aria-snapshot.js --url, snapshot.js, evaluate.js and web-scraping examples) and output/interpret page content (ARIA snapshots, JSON results, console/network logs), which exposes the agent to untrusted third-party web content.