get-started

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill instructs the agent to use the chrome-devtools MCP to navigate to a public website (e.g., google.com) and read the final URL/page title, which means it fetches and interprets untrusted third-party web content.