ci-monitor
Warn
Audited by Snyk on Mar 4, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and prints CI run logs from GitHub using "gh run view --log-failed" (see ci-monitor.py's fetch_failed_logs and the SKILL.md "Reports failure logs" feature), which are untrusted, user-generated third-party contents that the agent will read and could influence subsequent actions.
Audit Metadata