skills/hainrixz/claude-webkit/web-reader/Snyk

web-reader

Warn

Audited by Snyk on Mar 20, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The SKILL.md and examples (e.g., scripts/web-reader.ts, CLI usage, and the Express.js endpoint /api/read-page) explicitly fetch and process arbitrary public URLs via zai.functions.invoke('page_reader'), meaning the agent ingests untrusted third-party web content that can influence subsequent processing and actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 20, 2026, 01:01 AM

Issues

1