coolify-operator
Warn
Audited by Snyk on May 2, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md) instructs the agent to fetch and parse JSON and logs from arbitrary Coolify API endpoints (e.g., curl to "$COOLIFY/applications", "$COOLIFY/deployments", and using "coolify app logs ") supplied by the user, meaning untrusted third-party instance responses and user-generated logs are read and used to decide/drive follow-up actions like restarting or deploying apps.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata