featbit-deployment-docker
Warn
Audited by Snyk on Mar 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly instructs cloning and fetching files from public GitHub URLs (e.g., "git clone https://github.com/featbit/featbit.git" and curl raw.githubusercontent links) and mounts/executes repository init scripts (infra/postgresql/docker-entrypoint-initdb.d, infra/mongodb/...), so it ingests public, third‑party content that can materially change behavior.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill explicitly instructs runtime fetching and execution of repository scripts (e.g., "git clone https://github.com/featbit/featbit.git" and a curl of raw content such as https://raw.githubusercontent.com/featbit/featbit/main/infra/mongodb/docker-entrypoint-initdb.d/v0.0.0.js), and those fetched init scripts are mounted/executed by the containers, so external content will execute code required for the skill.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata