automate-me
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). The runtime flow explicitly “mines their history” by reading
agent-transcripts/from the active workspace and feeding mined patterns/evidence into the agent’s LLM context; those transcripts can include outsider-authored free text (e.g., other people’s chat messages/comments) present in the workspace history.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata