subpoena-triage

Warn

Audited by Snyk on May 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). Yes — Step 0 of the required workflow directs the agent to research the applicable rule using external legal research connectors (e.g., Westlaw, CourtListener, Trellis, Descrybe) and explicitly permits searching the web ("search the web — results will be tagged [web search — verify]"), meaning the agent will fetch and read untrusted public third-party content that can materially influence its triage, objections, and deadlines.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 17, 2026, 03:59 AM
Issues
1
Security Audit — snyk — subpoena-triage