Skills
skills/crazymsn/academic-skills/hypothesis-generation/Snyk

hypothesis-generation

Warn

Audited by Snyk on Jun 14, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

  • Potentially malicious external URL detected (high risk: 0.90). The scripts (scripts/generate_schematic_ai.py and scripts/generate_schematic.py) call the OpenRouter API at https://openrouter.ai/api/v1 (and reference https://openrouter.ai/keys) at runtime to run image-generation and review models whose textual critiques are parsed and used to modify prompts and control iterative generations, and the scripts require an OPENROUTER_API_KEY—thus an external runtime dependency directly controlling agent prompts.

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

  • Hidden Unicode characters detected (1 type(s) found)

Issues (2)

W012
MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

W021
MEDIUM

Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 14, 2026, 09:22 AM
Issues
2
Security Audit — snyk — hypothesis-generation