e2e-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to and explores a user-provided base URL (Setup Mode Step 2: "Navigate to base URL" and Run Mode runtime discovery), captures DOM/network/console snapshots, and uses AI judgment to evaluate page content—therefore it fetches and interprets arbitrary public web content (untrusted/user-generated) as part of its workflow.