skills/infranodus/skills/embodied-navigation/Snyk

embodied-navigation

Warn

Audited by Snyk on Apr 4, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs to "always start here when analyzing text, URL, or conversation" using InfraNodus MCP tools (e.g., optimize_text_structure), which implies fetching and interpreting arbitrary URLs/open-web content that could contain untrusted, user-generated instructions influencing subsequent actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 4, 2026, 11:13 PM

Issues

1

Security Audit — snyk — embodied-navigation