ios-simulator-pwa-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly opens and inspects arbitrary external URLs (e.g., xcrun simctl openurl "https://your-pwa.com" and the scripts/multi-device-test.sh that accepts a URL) and uses Safari Web Inspector to read DOM, console, network, and service worker content, which clearly exposes the agent to untrusted web/user-generated content that could carry indirect prompt injection.