iblai-ops-init
Warn
Audited by Snyk on May 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). This skill's workflow explicitly instructs running "npx skills add https://github.com/anthropics/skills --skill frontend-design" (Step 3), which fetches and installs code from a public GitHub repository—untrusted third-party content that the agent may ingest and that could influence subsequent behavior.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata