skills/danmossa/spacetimedb-skills/spacetimedb-deploy/Snyk

spacetimedb-deploy

Warn

Audited by Snyk on May 7, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The docs include a direct installation command that fetches and executes remote code at runtime—e.g. "curl -sSf https://install.spacetimedb.com | sh"—which is a required setup step and therefore a high-confidence runtime dependency that executes remote code.

Issues (1)

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 7, 2026, 08:57 PM

Issues

1

Security Audit — snyk — spacetimedb-deploy