sap-ai-mcp-servers-registry
Warn
Audited by Snyk on May 17, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly instructs fetching and cloning public GitHub repositories (e.g., "git clone https://github.com/[owner]/[repo].git" and the curl to https://raw.githubusercontent.com/marianfoo/sap-ai-mcp-servers/main/CHANGELOG.md) and directs using community MCP servers and their docs, which are untrusted, user-generated sources that the agent would read and could materially influence tool selection and actions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata