Skills
skills/willoscar/research-units-pipeline-skills/arxiv-search/Snyk

arxiv-search

Warn

Audited by Snyk on Mar 15, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches and parses public arXiv content via the export.arxiv.org API (see _search_arxiv_once and _best_effort_enrich in scripts/run.py and the SKILL.md "online" retrieval flow), so untrusted third‑party text (titles/abstracts/comments) is ingested and can influence filtering and downstream decisions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 15, 2026, 01:59 PM
Issues
1