browserbase-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly exposes the agent to open, third‑party web content via commands like bb fetch <url> and bb search "<query>" (see SKILL.md and REFERENCE.md), which the agent is expected to retrieve and interpret as part of its workflow and therefore could allow untrusted page content to influence subsequent actions.