Skills
skills/c0ntr0lledcha0s/claude-code-plugin-automations/managing-projects/Snyk

managing-projects

Warn

Audited by Snyk on Mar 9, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and parses user-generated GitHub content (issues, PRs, project items) from the public GitHub API/gh CLI — e.g., scripts/graphql-queries.sh, scripts/project-helpers.sh and SKILL.md workflows (bulk_add_items, get_project, generate_report) — and then uses that content to drive actions (add/update/archive items and automation), meaning untrusted third-party content could materially influence tool behavior.

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs automatic installation of the GitHub CLI using sudo and shows manual installation commands that modify system files (e.g., /usr/share/keyrings and /etc/apt/sources.list.d), which requires elevated privileges and changes the machine state.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 9, 2026, 09:58 AM