web-perf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly navigates to and traces arbitrary target URLs (see "navigate_page(url: "")", performance traces, list_network_requests, and DOM/insight analysis) so the agent ingests and interprets untrusted third-party web content which can materially influence its analysis and subsequent actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires running the external command "npx -y chrome-devtools-mcp@latest" (which fetches and executes remote code from the npm registry at runtime) to provide the chrome-devtools MCP server the skill depends on.