demand-draft

Warn

Audited by Snyk on May 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's required workflow instructs the agent to "Research the settlement-communication protections applicable in the forum" in the PRE-DRAFT CHECKLIST and to run citation verification (including an explicit "search the web — results will be tagged [web search — verify]" option) — both mandatory steps that fetch and interpret public third-party web/legal-research content that can materially alter drafting decisions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 20, 2026, 03:33 AM
Issues
1
Security Audit — snyk — demand-draft