skills/family3253/skill/remotion-skill/Snyk

remotion-skill

Warn

Audited by Snyk on Mar 15, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). SKILL.md Step 1 explicitly instructs the agent to auto-clone a public GitHub repo ("git clone https://github.com/Ceeon/remotion-skill.git skills/remotion") and then read/install/run files from that repository as part of the workflow, meaning untrusted third‑party code/content will be ingested and can influence template selection and execution.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The skill's runtime explicitly runs "git clone https://github.com/Ceeon/remotion-skill.git skills/remotion" and then npm install / npx remotion, meaning it fetches and executes code from that remote GitHub repository (https://github.com/Ceeon/remotion-skill.git), so the external content would directly control runtime behavior.

Issues (2)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 15, 2026, 08:18 AM

Issues

2