contributing
Warn
Audited by Snyk on Feb 21, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The skill explicitly scans and reads remote repositories and public issue trackers ("Scanning remote repository", "Automatic Issue Discovery & Linking", "search remote issues", "create issues in project's style") — i.e., ingesting user-generated third-party issue and comment content and using it to drive PR/issue creation and tooling decisions, which can enable indirect prompt injection.
Audit Metadata