unity3d
Warn
Audited by Snyk on Mar 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). The SKILL.md (and mirrored AGENTS.md) includes a DataLoader that uses UnityWebRequest (LoadTextureCoroutine and LoadJsonAsync) to fetch arbitrary URLs, which clearly ingests untrusted/public third-party content that the agent/runtime would read and could materially influence behavior.
Audit Metadata