mcp-chrome-devtools

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly loads and navigates arbitrary web pages (mcp__chrome-devtools__new_page, mcp__chrome-devtools__navigate_page) and then reads/inspects page content (mcp__chrome-devtools__take_snapshot, list_console_messages, list_network_requests, evaluate_script), meaning it ingests untrusted public web content that can directly influence subsequent tool actions.