qa

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 3 ("For browser automation (qa-use)") explicitly requires using qa-use:explore to navigate, snapshot, and interact with target pages and the Evidence section lists external links (Sentry, Grafana, PRs, Loom), so it will fetch and interpret arbitrary third‑party/web content that can influence test actions.