publish-x-article
Warn
Audited by Snyk on Mar 8, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly navigates and snapshots a public X (Twitter) web page (see SKILL.md "Step 2: Open X Articles Editor" with browser_navigate to https://x.com/compose/articles and browser_snapshot / browser_wait_for text checks like "正在上传媒体"), so it reads and relies on UI content from an untrusted, user-generated third‑party site as part of runtime control flow.
Audit Metadata