find-skills

Warn

Audited by Snyk on May 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The SKILL.md workflow explicitly directs the agent to search and fetch skills from the open ecosystem (e.g., "npx skills find [query]" and "Browse skills at: https://skills.sh/" and installing from GitHub via npx skills add), meaning the agent will ingest untrusted, user-published skill descriptions/repositories and use that content to decide recommendations or perform installs which could materially influence subsequent actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 18, 2026, 08:17 PM
Issues
1
Security Audit — snyk — find-skills