ios-android-logs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill instructs reading device WebView/JavaScript console and network logs (e.g., "adb logcat -s 'chromium:*'", "xcrun simctl ... 'eventMessage contains "JS:"'") which can contain arbitrary, untrusted third‑party web content and the agent is expected to read/interpret those logs as part of its workflow, enabling indirect prompt injection.