chrome-devtools-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md Standard Audit Workflow and navigation/examples (e.g., audit_page(url) using navigate(url), execute_script, take_snapshot, and take_screenshot) explicitly direct the agent to load arbitrary web pages and read DOM/network/console data from those public third-party URLs, allowing untrusted page content to influence decisions and subsequent tool actions.