accessibility-compliance

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's testing tools include run_accessibility_audit(url) which uses Playwright to page.goto(arbitrary_url) and then reads/evaluates the page (including embedding node['html'] in reports), so it fetches and interprets untrusted public web content.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The run_accessibility_audit function injects and executes remote JavaScript at runtime by loading the axe-core library from https://cdnjs.cloudflare.com/ajax/libs/axe-core/4.7.2/axe.min.js, and the audit relies on that fetched script as a required dependency.