browser-automation-parity

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's runtime workflow launches Playwright and navigates to user-supplied URLs (see scripts/example_workflow.py's page.goto and the step/run_with_tracing flow) and the diagnostics handoff explicitly tells the Browser Subagent to "Navigate to {url} in the browser" and inspect the DOM (references/diagnostics.md), so the agent will load and interpret arbitrary third‑party web pages as part of diagnosis and code-fix decisions.