Skills
skills/wu-yc/labclaw/tooluniverse-variant-interpretation/Snyk

tooluniverse-variant-interpretation

Warn

Audited by Snyk on Mar 15, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). This skill explicitly queries and ingests open/public third‑party sources (e.g., PubMed, BioRxiv/MedRxiv, ClinVar, gnomAD, COSMIC, DisGeNET, OMIM, ClinGen, ChIPAtlas, ENCODE, AlphaFold/PDB) as required steps in its SKILL.md workflow and uses that content to drive ACMG evidence codes, classifications, and clinical recommendations, so untrusted external content can materially influence agent decisions and tool use.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 15, 2026, 04:32 AM
Issues
1