skills/anthropics/knowledge-work-plugins/zoom-mcp/whiteboard/Snyk

zoom-mcp/whiteboard

Warn

Audited by Snyk on May 31, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). The required runtime read workflow calls Zoom’s MCP tools (list_whiteboards and get_a_whiteboard) using a user OAuth token; the LLM ingests the tool responses (whiteboard listings/metadata) which are outsider-authored content from Zoom’s service rather than user-authored text.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 31, 2026, 07:56 AM

Issues

1

Security Audit — snyk — zoom-mcp/whiteboard