Skills
skills/instantx-research/skills/frontend-ui/Snyk

frontend-ui

Warn

Audited by Snyk on Apr 12, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's Phase 2 "Design DNA Extraction" (and Mode B in SKILL.md/README) explicitly instructs the agent to WebFetch/WebSearch arbitrary public URLs or screenshots (e.g., "/frontend-ui --ref https://linear.app") and to extract and apply colors/typography/structure from those third‑party pages as part of its generation, which means untrusted web content can directly influence the agent's decisions and actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 12, 2026, 06:36 AM
Issues
1