testing-browser-manual

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to "Open URL" (page_navigation) and to inspect/read page content via Inspect Elements, Console Logs, and Network Monitoring, which requires fetching and interpreting arbitrary public web pages and their user-generated/untrusted content.