when-using-advanced-swarm-use-swarm-advanced

Fail

Audited by Snyk on Jun 26, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.70). The URL points to a GitHub repository under an individual account that promotes running code via npx (which will download and execute a package), and without evidence of an established, well-audited project or publisher this is moderately high risk for distributing malicious code.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

  • Potentially malicious external URL detected (high risk: 0.90). The skill repeatedly invokes "npx claude-flow@alpha" at runtime (which fetches and executes remote package code) and references the claude-flow repository at https://github.com/ruvnet/claude-flow, so external content is fetched-and-run and is required for the skill to operate.

Issues (2)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W012
MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 26, 2026, 03:22 AM
Issues
2
Security Audit — snyk — when-using-advanced-swarm-use-swarm-advanced