skills/fandhe-ai/agent-reference-skills/implement-review-pr/Snyk

implement-review-pr

Warn

Audited by Snyk on Mar 20, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The skill's Step 1 workflow in SKILL.md instructs using "gh pr view " and "gh pr diff " to fetch GitHub PR/diff content (user-generated, public third-party content) which the agent reads and uses to make review decisions and post comments, exposing it to potential indirect prompt injection.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 20, 2026, 12:06 PM

Issues

1

Security Audit — snyk — implement-review-pr