zoom-cobrowse-sdk
Warn
Audited by Snyk on Apr 9, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill describes real-time co-browsing where the agent views the customer's arbitrary webpage content (customer-side integration / session.start emits the PIN and the Zoom-hosted agent desk iframe loads the customer's browser view — see "Customer Side Integration" and "Agent Side Integration (Iframe)" in SKILL.md), so untrusted third-party pages the customer visits are ingested and can influence agent actions.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill loads and runs remote JavaScript at runtime from the Zoom CDN (e.g. https://us01-zcb.zoom.us/static/resource/sdk/${ZOOM_SDK_KEY}/js/2.13.2) and also embeds the Zoom-hosted agent portal (https://us01-zcb.zoom.us/sdkapi/zcb/frame-templates/desk?access_token=${token}), both of which execute remote code and are required runtime dependencies for the skill.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata