hyperframes-animation
Warn
Audited by Snyk on Jun 27, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill includes multiple CDN-hosted script/module imports that are fetched and executed at runtime to provide core adapter functionality (e.g., https://cdn.jsdelivr.net/npm/gsap@3.14.2/dist/gsap.min.js, https://cdn.jsdelivr.net/npm/animejs@4.0.2/lib/anime.iife.min.js, https://cdn.jsdelivr.net/npm/three@0.181.2/+esm, https://cdnjs.cloudflare.com/ajax/libs/bodymovin/5.12.2/lottie.min.js, https://unpkg.com/@lottiefiles/dotlottie-web), which constitutes runtime external dependencies that execute remote code and are relied on by the skill.
Issues (1)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata