voicenotes
Warn
Audited by Snyk on Feb 24, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows it fetches and displays user-generated transcripts from the third-party API at https://api.voicenotes.com (e.g., the "transcript" fields returned by semantic search and recording endpoints), which the agent reads and uses as part of its workflow—allowing those untrusted contents to influence actions or decisions.
Audit Metadata