skills/jcottam/agent-resources/review-pr/Snyk

review-pr

Warn

Audited by Snyk on Jun 12, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). The skill ingests outsider-authored free text from the PR itself—e.g., gh pr view <N> --json ... ,body,... and git log ... --format="%h %s%n%n%b" read the PR description and commit messages written by the contributor (non-operating user) into the agent’s LLM context.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 12, 2026, 07:48 PM

Issues

1

Security Audit — snyk — review-pr