instagram-place-posts
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). Outsider free text is fetched at runtime from Instagram’s public web/API endpoints (e.g.,
https://www.instagram.com/api/v1/location_search/andhttps://www.instagram.com/api/v1/locations/{location_id}/sections/), and the returned JSON fields likecaptionare converted into LLM-readable strings in the tool output (caption: m.caption ? m.caption.text : null).
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata