moai-platform-chrome-extension

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's core workflows (modules/content-scripts-guide.md and service-worker-patterns.md, and SKILL.md) explicitly describe injecting content scripts that read and extract DOM from arbitrary web pages and service worker/offscreen code that fetches and parses external web pages/APIs (e.g., fetch and offscreen.parse-html), meaning untrusted, user-generated third-party content is ingested and can influence messaging and follow-up actions.