playwright

SUSPICIOUS: the main Playwright guidance is coherent and mostly benign, but the MCP integration weakens trust by recommending an unpinned third-party package while describing official Microsoft MCP tools. No clear credential theft or exfiltration is present, yet browser automation plus third-party MCP execution and real-world action capability create meaningful security risk.