skills/athola/claude-night-market/dependency-verification/Snyk

dependency-verification

Warn

Audited by Snyk on Jun 17, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (medium risk: 0.65). The required runtime workflow performs registry existence checks by fetching public package registry endpoints (e.g., PyPI/npm/crates.io URLs) and ingesting the HTTP response status into the agent’s decision context, which is outsider-authored web content.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 17, 2026, 12:19 PM

Issues

1

Security Audit — snyk — dependency-verification