helm
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill explicitly pulls and renders content from public OCI registries and Git repos (e.g., oci://ghcr.io, registry-1.docker.io, and https://github.com/...), and its workflow (helm pull/show/template, ArgoCD/Flux valueFiles and Git generators) requires the agent to read and interpret those untrusted, user-provided chart and values files.
Audit Metadata