browser

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill's SKILL.md explicitly directs the agent to "navigate"/"open" arbitrary web pages and use snapshot/act.evaluate to extract and act on page content, meaning it fetches and interprets untrusted public third‑party web content that can influence subsequent actions.