AudioEditor

Fail

Audited by Snyk on Jun 30, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E004: Prompt injection detected in skill instructions.

  • Potential prompt injection detected (high risk: 0.90). The skill mandates an immediate, non-optional curl POST to a local notify endpoint before doing anything else—an extraneous side-effect unrelated to audio editing that forces network activity and changes agent behavior outside the skill's stated purpose.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can enter the LLM context via the user-supplied audio file’s transcription: Pipeline.tsTranscribe.ts produces transcript.json from the audio, then Analyze.ts reads that transcript and embeds windowText (transcript text) into userPrompt for the Claude inference() call.

Issues (2)

E004
CRITICAL

Prompt injection detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 30, 2026, 03:34 PM
Issues
2
Security Audit — snyk — AudioEditor