Skills
skills/aradotso/codex-skills/codexmonitor-orchestration/Snyk

codexmonitor-orchestration

Warn

Audited by Snyk on May 16, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The SKILL.md shows explicit GitHub integration using the gh CLI (e.g., github_list_prs, github_pr_diff) and a github_ask_pr flow that sends PR context into a new thread, meaning the agent ingests untrusted, user-generated third-party content (PRs/issues) and uses it to drive agent behavior.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 16, 2026, 07:31 PM
Issues
1