Skills
skills/huggingface/openenv/hf-space-recovery/Snyk

hf-space-recovery

Warn

Audited by Snyk on Jun 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.85). The workflow ingests outsider-authored free text from Hugging Face Space runtime fields and logs—specifically .runtime.raw.errorMessage via hf spaces ls --expand=runtime and the event/metrics bodies via curl https://huggingface.co/api/spaces/openenv/<space-id>/events and /metrics, which are not authored by the operating user.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 18, 2026, 09:09 AM
Issues
1
Security Audit — snyk — hf-space-recovery