skills/sunny0826/open-source-skills/open-source-analysis/Snyk

open-source-analysis

Warn

Audited by Snyk on Apr 3, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly directs the agent to "visit the provided GitHub URL" and to read the repository README and recent commits/issues/PRs on GitHub — public, user-generated content that the agent must ingest and interpret to generate ratings and drive decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 3, 2026, 01:26 AM

Issues

1