research-icp
Warn
Audited by Snyk on Jul 4, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). Outsider free text is ingested via the runtime VoC collection path:
voc-collector-agentfetches and extracts public web/community content (e.g., Reddit/G2/Twitter reviews/threads) and turns it into readable quote text that is then placed into the LLM context for downstream synthesis/critic steps.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata