find-skills
Warn
Audited by Snyk on Mar 6, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs using the open Skills ecosystem (e.g., "npx skills find [query]" and "npx skills add owner/repo@skill" and links to https://skills.sh/), which discovers and installs community-hosted/public GitHub skills (untrusted third-party content) that the agent is expected to read/present and that can materially change its behavior.
Audit Metadata