play-tight

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill runs Playwright scripts that navigate to arbitrary URLs (e.g., scripts/get-text.js and scripts/navigate-and-extract.js accept a and extract visible text or structured data from the open web such as github.com/example paths), so it fetches and interprets untrusted third-party/user-generated web content as part of its workflow.