x-tweet-by-conversation
Warn
Audited by Snyk on Jul 9, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). Yes—runtime network capture of X’s GraphQL
TweetDetailresponses (containing tweet text and author bios/descriptions authored by other users) is saved as readable JSON/text files and then parsed byscripts/parse-tweets.py, whose extracted fields (e.g.,text,author.description) are emitted into the agent’s LLM context as structured output.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata