Using the Block Collection and Block Party
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches and instructs the agent to search and review public GitHub repositories and live example URLs (e.g., https://github.com/adobe/aem-block-collection, live example sites) and a community Block Party index (https://www.aem.live/developer/block-party/block-party.json?sheet=curated-list-new), which are untrusted/third‑party sources (community-contributed Block Party entries) whose content the agent is expected to read and interpret as part of its workflow.
Audit Metadata