teamharness-task-execution
Warn
Audited by Snyk on Jun 21, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). The skill reads
shared/tasks/{task-id}/spec.mdandshared/tasks/{task-id}/meta.jsonat runtime; if those files are authored by the Leader/outsider rather than the operating user, their free-text contents can be ingested into the agent’s LLM context via the task-directory file reads.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata