testability-scoring

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill autonomously navigates to and evaluates arbitrary target URLs (see scripts/run-assessment.sh and tests/testability-scoring/testability-scoring.spec.js which use TEST_URL/config.baseURL and page.evaluate to read DOM, console logs and network requests), meaning untrusted public webpages can be ingested and materially influence scoring, recommendations, and subsequent agent actions.