webpage-screenshotter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly navigates to and captures arbitrary public URLs (e.g., get_screenshot(url) using page.goto(url) and the screenshotWithCloudflareBypass flow), meaning it fetches and renders untrusted third‑party web content (including DOM inspection like page.$ and wait_for_selector) as part of its runtime workflow.