sync-github-podio
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (HIGH): The skill is highly susceptible to Indirect Prompt Injection.
- Ingestion points: External data enters through
mcp__github__list_issuesandmcp__github__list_pull_requests(SKILL.md, Phase 1). - Boundary markers: None. The instructions do not specify how to distinguish between data and instructions in the external content.
- Capability inventory: The skill possesses significant write capabilities, including
mcp__podio-mcp__update_item,mcp__github__update_issue,mcp__podio-mcp__create_item, andmcp__github__create_issue(SKILL.md, Phase 3). - Sanitization: No sanitization or validation is applied to the data before it is synced or used to update other records.
Recommendations
- AI detected serious security threats
Audit Metadata