web-perf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly loads and inspects arbitrary target URLs from the open web (e.g., via navigate_page(url: "..."), performance_start_trace, and list_network_requests), causing the agent to fetch and interpret untrusted third-party page content and network data.