rodney
Warn
Audited by Snyk on Feb 19, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using the rodney CLI to navigate to arbitrary pages and extract page content ("navigating to pages... extracting page content"), which means the agent will fetch and interpret untrusted third-party web content that could carry indirect prompt injections.
Audit Metadata