skills/alcyone-labs/agent-skills/aquaria-docs/Snyk

aquaria-docs

Warn

Audited by Snyk on Mar 1, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill's droid workflow (commands/droid/aquaria-docs.md Step 1) instructs the agent to fetch and run a public install script via curl from https://raw.githubusercontent.com/Alcyone-Labs/agent-skills/main/install.sh, which clearly ingests and executes untrusted third‑party content that can change behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 1.00). The droid command includes a runtime install step that runs curl -fsSL https://raw.githubusercontent.com/Alcyone-Labs/agent-skills/main/install.sh | bash -s -- … which fetches and immediately executes remote code, so this URL is a high-risk runtime dependency.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 1, 2026, 06:41 PM