skills/levnikolaevich/claude-code-skills/ln-823-pip-upgrader/Snyk

ln-823-pip-upgrader

Warn

Audited by Snyk on Apr 12, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs fetching missing "shared/" files via WebFetch from https://raw.githubusercontent.com/... and mandates using MCP tools including "WebSearch" and ref_search_documentation to consult public docs/community fixes, so the agent will read and act on open, third‑party content that could influence its decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.80). The skill explicitly instructs that if shared/ is missing it will fetch files at runtime from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}, and those fetched markdown files (e.g., mandatory "breaking_changes_patterns.md" and coordinator contracts) are required at runtime and can directly shape the agent's instructions/context.

Issues (2)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 12, 2026, 04:40 PM

Issues

2