Navigator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly automates navigation and scraping of arbitrary web pages (e.g., playwight_navigate/page.goto and the data-extraction patterns in SKILL.md and references/data-extraction.md that use page.evaluate, pagination loops, and form interactions), so it ingests untrusted third-party site content which the agent reads and uses to decide clicks, pagination, and submissions.