playwright-devops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's fetch-commit-logs.sh script uses the GitHub CLI to pull commit metadata and job log files from the public "microsoft/playwright" repository, and the commit-failures.md workflow explicitly instructs the agent to read summary.json and each downloaded .log file and base its CI health report and follow-up analysis on that content, thereby exposing the agent to untrusted third-party content that could contain injected instructions.