web-design-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to and retrieves DOM/snapshots from arbitrary target URLs (see Prerequisites: "Production environment" and Step 2.1 "Navigate to the specified URL"), so it ingests and interprets untrusted third-party web content provided as URLs.