moltbook
Warn
Audited by Snyk on Feb 19, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill's scripts and docs (e.g., feed.sh and search.sh and SKILL.md/README heartbeat guidance) explicitly fetch and display user-generated Moltbook posts/search results from the public site and instruct the agent to read them and then comment, vote, or post based on what it finds, meaning untrusted third‑party content can directly influence the agent's actions.
Audit Metadata