web-perf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly navigates to and analyzes arbitrary target web pages (Phase 1: navigate_page(url: "") plus performance_start_trace, list_network_requests, take_snapshot, etc.), ingesting untrusted public web content which the agent reads and uses to drive analysis and recommendations.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's runtime config invokes "npx -y chrome-devtools-mcp@latest", which fetches and executes the chrome-devtools-mcp npm package as a required runtime dependency (remote code executed via npx) — flagged: npx -y chrome-devtools-mcp@latest.