web-performance-optimization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md workflow explicitly instructs the agent to navigate and trace arbitrary target URLs (e.g., Phase 1: navigate_page(url: "") plus list_network_requests/performance_analyze_insight) and also retrieves public docs (web.dev, developer.chrome.com), so the agent will fetch and interpret untrusted public website content that can materially influence its analysis and subsequent recommendations.