coolhunter
Warn
Audited by Snyk on Feb 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly enables web browsing and runs web_search queries in "STEP 2: Web Research Execution" (references/workflow-execution.md) and declares "Web-Browsing: included" and acceptance of user-provided links/snippets in workflow-plan-coolhunter.md, meaning the agent will fetch and read open/public third-party URLs and news content.
Audit Metadata