amazon-category-research
Warn
Audited by Snyk on May 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to and scrapes arbitrary, user-provided Amazon Best Sellers URLs using Playwright (mcp__playwright__browser_navigate and browser_evaluate in Steps 1.2–1.4), extracts page text and subcategory links, and hands the raw scraped product/review data to multiple analysis agents—clearly exposing the agent to untrusted public web content that can influence downstream decisions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata