mooco
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly describes ingesting and using external, user-generated sources—e.g., "GitHub as Microworld" (issues, PRs, commit messages) and "Storage Layering" listing "web pages, discussion threads, ... Wikipedia pages"—so the agent would read untrusted third-party content as part of its workflow.
Audit Metadata