skills/cloudchef/atlasclaw-providers/find-skills/Snyk

find-skills

Warn

Audited by Snyk on Jun 17, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). The skill’s runtime workflow “search and discover OpenClaw skills from various sources” (e.g., ClawHub/OpenClaw Directory/LobeHub/GitHub/community forums) can fetch and ingest outsider-authored free text from public web pages or repository/issue content into the agent’s LLM context.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 17, 2026, 03:45 AM

Issues

1

Security Audit — snyk — find-skills