box-legal-workflows-intake
Warn
Audited by Snyk on May 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The skill explicitly lists and reviews client-submitted files from Box intake folders (e.g., list_folder_content_by_folder_id + ai_qa_multi_file) — untrusted user-provided documents are read and interpreted to assign risk, route cases, and trigger actions like metadata updates and engagement-letter generation, so third-party content can materially influence agent decisions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata