skills/anupam-io/sprint-skills/sprint/Snyk

sprint

Warn

Audited by Snyk on Jun 21, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). Outsider free text is pulled from GitHub at runtime via gh issue view $NUM inside run-sprint.sh (the issue body/fields authored by non-operating users become part of the claude -p "$PROMPT" context).

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 21, 2026, 07:44 AM

Issues

1

Security Audit — snyk — sprint