agentic-workflow-guide

Warn

Audited by Snyk on May 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's instructions explicitly require using web/MCP fetch tools and external URLs (see .github/instructions/integrations/microsoft-docs.instructions.md, agent-guide.md and the External References list) so the agent will retrieve and act on public third‑party webpages/documents that can influence tool use and decisions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 20, 2026, 06:41 PM
Issues
1
Security Audit — snyk — agentic-workflow-guide