playwright-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly runs Playwright CLI against arbitrary URLs (see Quick Reference and CLI examples like "npx playwright codegen https://example.com", "npx playwright screenshot https://example.com", "npx playwright pdf https://example.com", "npx playwright open https://example.com"), which loads and processes untrusted third-party web pages as part of its required workflow and could therefore allow page content to influence generated tests or subsequent actions.