skills/gemini-cli-extensions/looker/looker-dev/Snyk

looker-dev

Warn

Audited by Snyk on Apr 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The skill's scripts (e.g., scripts/* .js main functions) invoke npx to fetch and run "@toolbox-sdk/server@1.1.0" at runtime (see the npxArgs construction in each scripts/*.js), which downloads and executes code from the public npm registry (an untrusted third-party source) and therefore can materially influence the agent's actions and tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). The scripts spawn npx to fetch and invoke the package @toolbox-sdk/server@1.1.0 (fetched at runtime from the npm registry, e.g. https://registry.npmjs.org/@toolbox-sdk/server or https://www.npmjs.com/package/@toolbox-sdk/server), which causes remote code to be downloaded and executed as a required runtime dependency.

Issues (2)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 29, 2026, 05:18 AM

Issues

2