qwen-image-2

Warn

Audited by Snyk on May 19, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.70). The skill's "Image Editing (Multi-Reference)" example and input schema show it accepts reference_images specified by external URIs (e.g., "https://example.com/person.jpg"), so it fetches and ingests arbitrary public images that directly influence generation/editing decisions and thus could carry untrusted content that alters behavior.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 19, 2026, 07:48 AM
Issues
1
Security Audit — snyk — qwen-image-2