testability-scoring

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly runs Playwright against an arbitrary target URL (see SKILL.md and scripts/run-assessment.sh) and the test implementation (tests/testability-scoring/testability-scoring.spec.js) navigates to that URL and evaluates DOM/console/network to produce scores and recommendations, so it ingests untrusted third-party web content that can influence agent decisions.