playwright-console-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md workflow explicitly navigates to target URLs and uses mcp__playwright__browser_console_messages to read and act on console output (including third‑party script logs) as part of monitoring and decision-making (see "3.1 Setup and Navigation", "3.2 Execute with Monitoring", and the "Third-Party Integration Validation" example), which ingests untrusted public web content that can influence actions.