webapp-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The script scripts/playwright_runner.py directly navigates to arbitrary URLs with page.goto(url) and extracts page.title(), DOM element counts, performance metrics, console messages, and screenshots from those public web pages, thereby ingesting untrusted third-party content for processing.