treeherder
Warn
Audited by Snyk on Feb 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill explicitly queries the public Treeherder REST API (https://treeherder.mozilla.org/api/) and uses CLI tools (treeherder-cli, lumberjackth) to fetch job logs, error lines, push lists, bug-linked failures, and artifacts—all open/public, user-generated CI content that the agent is expected to read and analyze, which could carry indirect prompt injection.
Audit Metadata