browser-workflow-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 4 "Research: Web UX Conventions" explicitly instructs an agent to "Search for reference examples using WebSearch" and "Visit 2-3 reference examples" (e.g., Dribbble and public sites), which requires fetching and ingesting untrusted public web content that will influence the generated workflows.