ecommerce-seller-info
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The skill navigates to an outsider-provided seller/storefront URL and then ingests that page’s readable DOM/JSON-LD (including any free text on the page) via
eval "$(python scripts/extract-seller.py)"→document.querySelectorAll('script[type="application/ld+json"]')and other selectors, which can include outsider-authored content.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata