single-cell-preprocessing-with-omicverse
Warn
Audited by Snyk on Mar 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads and ingests external data and code from public third-party URLs — e.g., SKILL.md/reference.md instructs wget from http://cf.10xgenomics.com/... to load the PBMC3k dataset and contains a curl | bash from https://raw.githubusercontent.com/.../install.sh — which causes the agent to fetch and (in the install case) execute untrusted remote content that can influence runtime behavior.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill's environment setup includes a runtime command that fetches and executes remote shell code via curl -sSL https://raw.githubusercontent.com/Starlitnightly/omicverse/refs/heads/master/install.sh | bash -s, which runs remote code during installation and is presented as a required setup step.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata