web-performance-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly launches Lighthouse against arbitrary URLs (runAudit(url) calling lighthouse(url)) and uses in-page metrics (web-vitals/RUM) to measure and analyze page content, which means it ingests untrusted public web content that could carry indirect prompt injections.