skills/agglayer/agglayer-ai-skills/create-pr/Snyk

create-pr

Warn

Audited by Snyk on Apr 14, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The skill instructs the agent to read and follow the target repository's dedicated PR template (from the target repo), meaning it must fetch/ingest untrusted, user-provided repository content that can alter how the agent composes and acts on the PR.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 14, 2026, 08:02 AM

Issues

1