Skills
skills/firecrawl/openclaw/session-logs/Snyk

session-logs

Warn

Audited by Snyk on Apr 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 1.00). The skill explicitly reads conversation transcripts stored under ~/.openclaw/agents//sessions/ (which map to chat providers like discord, whatsapp) and ingests user-generated, untrusted third-party messages as part of its search/analysis workflow, so those external messages could contain instructions that influence agent behavior.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 18, 2026, 12:42 PM
Issues
1