skills/hotriluan/alkana-dashboard/agent-browser/Snyk

agent-browser

Warn

Audited by Snyk on Mar 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The SKILL.md core workflow and command reference explicitly show the agent navigating to arbitrary URLs (agent-browser open ), taking snapshots (agent-browser snapshot -i) and reading page content (get text/get html), which means it fetches and ingests untrusted public web pages (including via Browserbase) that can influence subsequent actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 29, 2026, 03:16 AM

Issues

1