Skills
skills/kangarooking/kangarooking-skills/viral-topic/Snyk

viral-topic

Warn

Audited by Snyk on Jun 15, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.85). The required runtime workflow calls public platform collectors (e.g., bilibili-viral-topic/scripts/search_bilibili_viral_topic.py via https://api.bilibili.com/x/web-interface/search/type and .../x/relation/stat, plus similar live calls in the WeChat/X/YouTube child skills), which ingest outsider-authored titles/text/metadata from third-party sites/APIs into the agent’s output/LLM context.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 15, 2026, 06:32 AM
Issues
1
Security Audit — snyk — viral-topic