wcag-audit-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's Automated Testing section and CLI examples (e.g., axe.run against the page DOM and commands like "npx @axe-core/cli https://example.com" and "lighthouse https://example.com") require fetching and analyzing arbitrary public websites, meaning untrusted third‑party content would be read and could influence audit decisions and follow-up remediation actions.