skills/duyet/skills/prompt-engineering/Snyk

prompt-engineering

Warn

Audited by Snyk on Mar 19, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs using Grok's real-time X (Twitter) access and web search/tool use (see SKILL.md model summary and references/grok.md, plus ReAct/Parallel Tool Use examples) so the agent is expected to ingest and act on untrusted public social-media/web content.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 19, 2026, 06:28 PM

Issues

1