cloudflare-browser-rendering

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly navigates to and renders arbitrary public URLs (e.g., REST API url parameter and examples like page.goto(targetUrl), the web scraper example that fetches "https://news.ycombinator.com", and the queue example using message.body.url) and passes the resulting HTML/content into AI/automation flows, so untrusted third‑party content can be read and influence decisions or actions.