homebrew
Warn
Audited by Snyk on Mar 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). Yes — the SKILL.md explicitly instructs interacting with public third-party sources (e.g., "brew create https://example.com/package.tar.gz" and "TAP: Third-party formula repositories" /
brew tap homebrew/cask-versions), which causes the agent to fetch and ingest untrusted repository/formula/source content that can materially change install/build behavior.
Audit Metadata