browserless

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and renders arbitrary public URLs (e.g., the browserless API and CLI calls like browserless.html('https://example.com'), browserless.text('https://example.com'), browserless.screenshot , and browserless.evaluate) and thus ingests untrusted user-generated or public web content which the agent is expected to read/interpret and could materially influence subsequent actions.