collaborating-with-gemini
Warn
Audited by Snyk on Jun 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 0.80). The bridge explicitly allows Gemini to run shell commands and read/write workspace files by default (sandbox is opt-in) and even warns that approval-mode may not reliably prevent writes, so the skill can cause/modulate modifications to the host machine's state.
MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).
- Hidden Unicode characters detected (1 type(s) found)
Issues (2)
W013
MEDIUMAttempt to modify system services in skill instructions.
W021
MEDIUMHidden or invisible Unicode characters detected (potential obfuscation or prompt injection).
Audit Metadata