sasam-update
Warn
Audited by Snyk on Mar 14, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly fetches and reads remote, public GitHub raw URLs (https://raw.githubusercontent.com/SAS-Asset-Management/SASAMClaudeCodeSkills/main/VERSION and .../CHANGELOG.md) as part of the update and changelog workflows, and those remote contents directly determine whether to apply updates and what actions to take.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill performs runtime fetches from the repository (e.g. https://github.com/SAS-Asset-Management/SASAMClaudeCodeSkills and its raw content URLs like https://raw.githubusercontent.com/SAS-Asset-Management/SASAMClaudeCodeSkills/main/VERSION) and the apply workflow runs fetched scripts (git pull followed by ./register-commands.sh and ./generate-manifest.sh), so remote repository content can be executed during runtime.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata