blog-brief

Warn

Audited by Snyk on May 21, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 1.00). The SKILL.md workflow explicitly instructs the agent to use "WebSearch" and "analyze the top 3-5 ranking pages" (Step 2/Step 3) and to "Search: '[topic] study 2025 2026 data statistics research'" (Step 4), meaning it fetches and interprets untrusted public web content that can influence decisions and actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 21, 2026, 07:35 AM
Issues
1
Security Audit — snyk — blog-brief