chrome-extension-wxt

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow includes content scripts that run on arbitrary public sites (e.g., entrypoints/content.ts with matches like '://' and createShadowRootUi mounting React into page) and examples using chrome.scripting/webRequest and page DOM (document.documentElement.dir), which clearly ingest untrusted third‑party web content as part of runtime behavior and can influence extension actions.