Skills
skills/openmbti/core/openjung-api/Snyk

openjung-api

Warn

Audited by Snyk on Feb 16, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). The skill directly fetches and displays content from the public OpenJung API (e.g., https://openjung.org/api/questions and https://openjung.org/api/stats), which are third‑party public endpoints whose untrusted text the agent is expected to read and interpret as part of its workflow, creating a clear vector for indirect prompt injection.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 16, 2026, 02:23 AM