testability-scoring

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill runs Playwright against arbitrary target URLs (see scripts/run-assessment.sh / TEST_URL and tests/testability-scoring/testability-scoring.spec.js where navigateToPage and page.evaluate collect page HTML, console logs, and network requests) and consumes that untrusted web content as input to its analysis, so it can ingest third‑party/user‑generated content.