astropy
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill explicitly includes runtime operations that fetch and ingest content from public third‑party sources — e.g., astropy.io.fits opening remote URIs (s3:// or HTTP via fsspec), astropy.utils.data.download_file('https://...'), and online queries such as SkyCoord.from_name(...) and EarthLocation.of_address(...) — which cause the agent to read untrusted, user/website-provided data as part of its workflow.
Audit Metadata