skills/dashed/claude-marketplace/mermaid-cli/Snyk

mermaid-cli

Warn

Audited by Snyk on Apr 22, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill explicitly instructs creating a Puppeteer config that disables the Chromium sandbox ("--no-sandbox", "--disable-setuid-sandbox"), which is a direct recommendation to bypass security mechanisms and thus can compromise the host.

Issues (1)

W013

MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 22, 2026, 02:36 PM

Issues

1