webapp-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's agents (Planner/Generator/Healer) actively drive the app and tests that submit and display arbitrary external URLs (e.g., HomePage.submitUrl in tests like tests/e2e/analysis-flow.spec.ts and the ArtifactPage which shows analyzed content), so the agents will ingest and read untrusted third‑party web content fetched/displayed by the app.