skills/bm629/agent-skills/reviewing-api-spec/Snyk

reviewing-api-spec

Warn

Audited by Snyk on Jun 15, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.95). The required runtime input is the outsider-authored api-spec document itself (the reviewer reads the “finished api-spec doc end to end” in Step 1), so any free-text authored by someone other than the operating user becomes LLM-readable context.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 15, 2026, 06:45 AM

Issues

1

Security Audit — snyk — reviewing-api-spec