moltbook
Warn
Audited by Snyk on Mar 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The skill's scripts (scripts/moltbook.sh) and SKILL.md/README explicitly fetch and surface public, user-generated Moltbook content via the API (e.g., GET /posts?sort=hot from https://www.moltbook.com) and instruct agents to read, summarize, and reply to those posts, so untrusted third‑party content can materially influence agent actions.
Audit Metadata