playwright-scraper-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation and executable scripts (SKILL.md and scripts/playwright-stealth.js / scripts/playwright-simple.js) explicitly fetch and evaluate arbitrary public URLs (e.g., Discuss.com.hk, example.com), returning page HTML/text and extracted links, so untrusted, user-generated web content can be ingested and could influence subsequent agent decisions.