skills/glennguilloux/context-engineering-kit/setup-context7-mcp/Snyk

setup-context7-mcp

Warn

Audited by Snyk on Feb 16, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and parses public README content from a raw GitHub URL (https://raw.githubusercontent.com/upstash/context7/refs/heads/master/README.md) and searches Context7 MCP documentation, which are open/public third-party sources the agent will read and interpret—allowing potential indirect prompt injection.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The skill explicitly instructs at runtime to load external README from https://raw.githubusercontent.com/upstash/context7/refs/heads/master/README.md and use its contents to guide the setup, so the fetched content would directly control agent instructions.

Audit Metadata

Risk Level

MEDIUM

Analyzed

Feb 16, 2026, 03:45 AM