frontend-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The Visual Inspection (MCP Browser Tools) explicitly uses Playwright actions like "Navigate" and "playwright_get_visible_html"/"playwright_get_visible_text" to open and analyze pages for review, meaning the agent will fetch and parse arbitrary web pages (public/third-party content) provided for review and thus can be exposed to untrusted user-generated content.