skills/dreammis/social-auto-upload/bilibili-upload/Snyk

bilibili-upload

Warn

Audited by Snyk on Mar 28, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The skill explicitly auto-downloads/auto-updates the third‑party "biliup" from upstream GitHub Releases (see references/runtime-requirements.md and references/troubleshooting.md), so the agent will fetch and run untrusted public release artifacts whose code/output can change CLI behavior and influence subsequent actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The skill explicitly auto-downloads the upstream biliup GitHub release at runtime (e.g. https://gh-proxy.org/https://github.com/biliup/biliup/releases/download/v1.1.29/biliupR-v1.1.29-aarch64-linux.tar.xz), which is a required dependency and would result in executing remote code fetched during runtime, creating a high RCE supply-chain risk.

Issues (2)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 28, 2026, 03:32 AM

Issues

2