chrome-ext-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly processes user-generated Chrome Web Store reviews as part of its workflow (see WORKFLOW.md Step 1 which asks for "レビューの内容（コピー＆ペースト）") so it ingests untrusted third-party content that the agent will read and interpret.