skills/flc1125/skills/otel-changelog-pr-verifier/Snyk

otel-changelog-pr-verifier

Warn

Audited by Snyk on Apr 3, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches GitHub PR metadata using commands like gh pr view (see SKILL.md and references/workflow.md), causing the agent to ingest untrusted, user-generated content from public GitHub PRs and use it to decide changelog/PR mismatches.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 3, 2026, 09:49 AM

Issues

1