Skills
skills/sirn/dotfiles/context7/Snyk

context7

Warn

Audited by Snyk on Mar 9, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly instructs the agent to call the open API GET https://context7.com/api/v2/context to retrieve plain-text/markdown documentation (including Source URLs like https://context7.com/owner/repo/llms.txt and GitHub links) from public libraries, so the agent will fetch and interpret untrusted third‑party content that could contain executable instructions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

  • Potentially malicious external URL detected (high risk: 0.90). The skill makes runtime requests to https://context7.com/api/v2/context to fetch plain-text/markdown documentation that is injected into the agent's context (thereby directly controlling prompts/instructions) and the skill requires the Context7 API key, so this external URL is a required runtime dependency.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 9, 2026, 09:56 AM