zoom-skills
Warn
Audited by Snyk on Apr 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The cobrowse-sdk SKILL.md and customer/agent example flows (e.g., get-started.md and the customer/agent HTML examples) describe an agent joining an active cobrowse session (agent iframe) to view the customer's live browser page and interact (annotations/remote assist), which means the agent runtime ingests arbitrary third‑party/user web content that could contain instructions influencing agent actions.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The Cobrowse skill loads and executes remote JavaScript at runtime from the Zoom CDN (e.g. https://us01-zcb.zoom.us/static/resource/sdk/${ZOOM_SDK_KEY}/js/2.13.2), which is a required runtime dependency that fetches and runs remote code in the client/agent context.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata