ln-521-test-researcher
Warn
Audited by Snyk on Apr 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly requires using Web Search and consulting public forums (e.g., "forums, StackOverflow, Reddit") and raw web content (fallback WebFetch to raw.githubusercontent.com) as mandatory research sources, and directs the agent to read/interpret those sources and use them to compile findings and decide test coverage, so untrusted third-party content can materially influence actions.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill explicitly instructs at runtime to WebFetch mandatory reference files from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}, and those fetched documents are required "MANDATORY READ" artifacts that would be injected into the agent's context and directly control its prompts/instructions.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata