iblai-features
Fail
Audited by Snyk on Jun 22, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E006: Malicious code pattern detected in skill scripts.
- Malicious code pattern detected (high risk: 0.90). High risk: the service executes admin-authored provisioning "snippets" server-side (arbitrary code execution vector) and several powerful endpoints (including platform-wide bulk-config) are documented as using AllowAny, enabling unauthenticated mass modifications — together these present a strong backdoor/RCE and abuse surface if admin access or configuration is compromised.
Issues (1)
E006
CRITICALMalicious code pattern detected in skill scripts.
Audit Metadata