htmx-expert
Fail
Audited by Snyk on Mar 3, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E004: Prompt injection detected in skill instructions.
- Potential prompt injection detected (high risk: 1.00). The prompt includes a mandatory "Memory Protocol" that explicitly instructs the agent to read a local memory file (cat .claude/context/memory/learnings.md) and record memory, which is an instruction to access internal state/files that is outside the htmx-expert's stated purpose and could be used to exfiltrate or manipulate agent memory.
Audit Metadata