skills/showjim/chao-skills/twitter-article-reader/Snyk

twitter-article-reader

Warn

Audited by Snyk on Apr 6, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to construct jina.ai proxy URLs (https://r.jina.ai/https://x.com/...) and use web_fetch to retrieve and return Twitter/X user-generated content, so the agent will ingest and interpret untrusted third‑party social‑media content that could contain malicious instructions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 6, 2026, 03:26 AM

Issues

1