chrome-cdp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill's CLI/daemon explicitly navigates to arbitrary http/https pages and returns/executes page content (see navStr in scripts/cdp.mjs and the "nav"/"html"/"eval" commands in SKILL.md/USAGE), so it ingests untrusted public web content (page HTML/JS) that can materially influence subsequent actions.