clean-code

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill requires running validation scripts that accept arbitrary URLs (e.g., "python .agent/skills/performance-profiling/scripts/lighthouse_audit.py " and "python .agent/skills/webapp-testing/scripts/playwright_runner.py ") and instructs the agent to capture and summarize all script output, which means the agent will ingest and interpret open/public web content provided via those URLs.