microsim-utils

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's screen-capture workflow (references/screen-capture.md) explicitly starts a local server and runs headless Chrome with flags to load external CDN libraries (p5.js, vis-network, Chart.js) so the agent will fetch and render third‑party web resources and then use the rendered output/screenshot to make verification and update decisions, exposing it to untrusted public content that can materially influence subsequent actions.