pwdebug

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI explicitly navigates to and interacts with arbitrary web pages and their runtime content (see SKILL.md quickstart commands like "scripts/pwdebug.py nav https://example.com --new", "scripts/pwdebug.py evaluate", "scripts/pwdebug.py pick", and "watch-logs"), so it ingests untrusted third-party page content and console/log output that can materially influence subsequent actions.