update-codex
Warn
Audited by Snyk on Jun 28, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Required workflow step 1 downloads
appcast.xmland then downloads/extracts the newest upstream enclosure (e.g.,Codex-darwin-arm64-<version>.zipor DMG) fromhttps://persistent.oaistatic.com/...at runtime; the extractedInfo.plist/app.asarcontents are then read/processed by the scripts and thus can introduce outsider-authored free text into the agent/LLM context via those artifact contents.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata