filesystem
Fail
Audited by Snyk on Mar 3, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E004: Prompt injection detected in skill instructions.
- Potential prompt injection detected (high risk: 1.00). The prompt includes a "Memory Protocol (MANDATORY)" that instructs the agent to read and write specific internal memory files and assume context resets, which is an instruction to persist and manipulate internal agent state outside the stated filesystem guidance and therefore is a deceptive/out-of-scope instruction.
Audit Metadata