skills/varnan-tech/opendirectory/reddit-post-engine/Snyk

reddit-post-engine

Warn

Audited by Snyk on Apr 19, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md Step 3 explicitly instructs the agent to fetch live subreddit data from Reddit's public API (e.g., https://www.reddit.com/r/{SUBREDDIT}/about/rules.json and /top.json), which is untrusted, user-generated content and is then used to determine tone/rules and drive drafting/posting decisions, creating a clear path for indirect prompt injection.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The skill issues runtime curl requests to Reddit (e.g. https://www.reddit.com/r/{SUBREDDIT}/about/rules.json and https://www.reddit.com/r/{SUBREDDIT}/top.json) and injects the fetched JSON-derived "tone/rules" into the Gemini prompt (SUBREDDIT_TONE_NOTES/POST_DETAILS_HERE), so remote content fetched at runtime directly controls the agent's prompts.

Issues (2)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 19, 2026, 08:34 AM

Issues

2