ln-111-root-docs-creator
Warn
Audited by Snyk on Apr 27, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). This skill's workflow explicitly fetches and loads reference/templates from the public raw.githubusercontent.com URL when local
shared/is missing (SKILL.md: "Ifshared/is missing, fetch files via WebFetch from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}") and also mandates readingshared/references/*files, so publicly-hosted, untrusted content would be read and could materially influence document-creation decisions and tool behavior.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill declares that if shared/ is missing it will fetch required templates and canonical guides at runtime from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}, and those fetched files (e.g., agent_instructions_writing_guide.md and templates) are mandatory and directly control the agent's prompts/instructions.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata