browser-workflow-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Phase 4 UX research step explicitly instructs an agent to use WebSearch and "visit 2-3 reference examples" (e.g., Dribbble and other public websites), which requires fetching and interpreting arbitrary open/public third-party web content.