fusion-pm-mcp
Warn
Audited by Snyk on Jul 4, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The required runtime workflow uses VS Code MCP over HTTP to call the hosted
fusion-pm-mcpserver, and the server returns GitHub issue/PR/comment text into the agent context via MCP tool responses (outsider-authored content from GitHub repositories).
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.80). The VS Code MCP config points at the hosted MCP endpoint (https://pm-mcp.api.fusion.equinor.com/mcp), which is invoked at runtime (initialize, tools/list, tools/call) and therefore determines the agent's tool surface and responses—i.e., external runtime content that directly controls how the agent acts.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata