playwright-form-validation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill's automation explicitly fills form fields with concrete "value" strings (including a plaintext password in examples) and would require the agent to insert user-provided credentials verbatim into browser_fill_form/browser commands to perform "valid submission" testing, creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow in SKILL.md explicitly navigates to user-provided/open web pages (browser_navigate with arbitrary URLs) and then snapshots and parses those pages using scripts/parse_validation_errors.py, so it ingests and acts on untrusted third-party web content (page text/error messages) as part of its decision/reporting flow.