skills/agentskillexchange/skills/Podcast RSS Feed Audio Normalizer/Snyk

Podcast RSS Feed Audio Normalizer

Warn

Audited by Snyk on Mar 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly says it "parses podcast RSS feeds using feedparser to discover and download episode audio files" (public RSS feeds are untrusted/user-generated third‑party content) and those feeds and their metadata directly drive downloads, normalization, and re‑uploads, so external feed content can materially influence agent actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 29, 2026, 03:36 AM

Issues

1