claude-agents

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's templates (notably templates/mcp-agent.md) explicitly instruct agents to use Playwright MCP tools like browser_navigate to load and interact with target URLs, which clearly fetches and interprets arbitrary public web pages whose user-generated/untrusted content can influence navigation and subsequent tool actions.