chrome-devtools

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill runs Puppeteer scripts like navigate.js, evaluate.js, and snapshot.js that navigate to arbitrary URLs and scrape or execute JS in page contexts, which clearly ingests untrusted public web content (third‑party websites) for interpretation.