obsidian-process-notes
Warn
Audited by Snyk on Jun 14, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Outsider free text can enter the LLM context because the workflow reads unprocessed Markdown files from
inbox/(which are user-provided clippings/notes authored by others) and then extracts title/claims/content to generate/update German wiki pages; this is indirect prompt injection viainbox/*.md→ LLM context.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata