chrome-devtools

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly navigates to arbitrary URLs with navigate_page and ingests/inspects page content via take_snapshot, evaluate_script, and list_console_messages (see SKILL.md Navigation & Page Management and Debugging & Inspection), so it consumes untrusted public web/user-generated content that could contain instructions influencing subsequent actions.