AudioEditor
Fail
Audited by Snyk on Jun 30, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E004: Prompt injection detected in skill instructions.
- Potential prompt injection detected (high risk: 0.90). The skill mandates an immediate, non-optional curl POST to a local notify endpoint before doing anything else—an extraneous side-effect unrelated to audio editing that forces network activity and changes agent behavior outside the skill's stated purpose.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can enter the LLM context via the user-supplied audio file’s transcription:
Pipeline.ts→Transcribe.tsproducestranscript.jsonfrom the audio, thenAnalyze.tsreads that transcript and embedswindowText(transcript text) intouserPromptfor the Claudeinference()call.
Issues (2)
E004
CRITICALPrompt injection detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata