skills/community-access/accessibility-agents/github-analytics-scoring/Snyk

github-analytics-scoring

Warn

Audited by Snyk on May 9, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires reading and analyzing GitHub repository data (owner/repo URLs, issues, PRs, comments, CI logs, Dependabot/security alerts) — untrusted, user-generated public content — to compute scores and drive escalations, so third-party content can influence agent decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 9, 2026, 11:24 PM

Issues

1