blogwatcher
Warn
Audited by Snyk on Mar 5, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows adding blog URLs and scanning RSS/Atom feeds (e.g., "blogwatcher add 'My Blog' https://example.com" and "blogwatcher scan"), so the skill fetches and ingests public blog/RSS content (untrusted third‑party) that the agent reads and uses to determine articles/next actions, enabling indirect prompt injection risk.
Audit Metadata