skills/atomicpages/mcp-skills/mcp-workflow-design/Snyk

mcp-workflow-design

Warn

Audited by Snyk on Mar 25, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The SKILL.md workflow explicitly requires web research and searching "vendor docs, product update blogs, community forums" (Phase 2 and Phase 3), meaning the agent is expected to fetch and interpret untrusted, user-generated public web content which can materially influence design and tool actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 25, 2026, 04:11 PM

Issues

1

Security Audit — snyk — mcp-workflow-design