llvm-security
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and read live content from a public GitHub raw URL (https://raw.githubusercontent.com/gmh5225/awesome-llvm-security/refs/heads/main/README.md), which is open third-party, user-contributed content that the agent would parse as part of its workflow and thus could carry indirect prompt injection risk.
Audit Metadata