Playwright Browser Automation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes examples that hardcode credentials into generated test scripts (e.g., 'password123') and shows passing header/token values via inline env/command lines, which encourages the agent to emit secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill runs Playwright automation against arbitrary or user-provided websites (see TARGET_URL usage, prompt-for-URL behavior in the dev-server workflow) and even crawls/requests external links (the "Check for Broken Links" example that iterates a[href^="http"] and issues page.request.head), so it clearly fetches and interprets untrusted third‑party web content.