hyperframes-animation
Warn
Audited by Snyk on Jun 14, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill text includes multiple runtime script/module imports that fetch and execute remote code (examples: https://cdn.jsdelivr.net/npm/gsap@3.14.2/dist/gsap.min.js, https://cdn.jsdelivr.net/npm/animejs@4.0.2/lib/anime.iife.min.js, https://cdn.jsdelivr.net/npm/three@0.181.2/+esm and related three/examples imports, https://cdnjs.cloudflare.com/ajax/libs/bodymovin/5.12.2/lottie.min.js, https://unpkg.com/@lottiefiles/dotlottie-web), which are explicitly referenced as required runtime dependencies in adapter examples and would be loaded/executed when compositions run.
Issues (1)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata