skills/boshu2/agentops/inject/Snyk

inject

Fail

Audited by Snyk on May 17, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E004: Prompt injection detected in skill instructions.

Potential prompt injection detected (high risk: 0.80). The prompt explicitly claims the skill is "read-only" but then instructs creating and appending citation files under .agents/ao (a write to the .agents/ tree), a behavior that contradicts the stated scope and is therefore deceptive.

Issues (1)

E004

CRITICAL

Prompt injection detected in skill instructions.

Audit Metadata

Risk Level

CRITICAL

Analyzed

May 17, 2026, 02:06 PM

Issues

1

Security Audit — snyk — inject