Skills
skills/brycewang-stanford/auto-empirical-research-skills/latex-document/Snyk

latex-document

Warn

Audited by Snyk on Jun 13, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly states its compile script "auto-installs texlive ... and poppler-utils if missing," which implies performing system package installations (requiring elevated privileges and modifying the machine state), so it instructs actions that can change the host system.

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

  • Hidden Unicode characters detected (2 type(s) found)

Issues (2)

W013
MEDIUM

Attempt to modify system services in skill instructions.

W021
MEDIUM

Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 13, 2026, 11:30 AM
Issues
2
Security Audit — snyk — latex-document