skills/lignertys/reddit-research-skills/reddapi/Snyk

reddapi

Warn

Audited by Snyk on Apr 17, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly calls reddapi.dev's APIs (e.g., the semantic search, trends, and subreddit endpoints) to fetch Reddit posts/comments — untrusted, user-generated content the agent is expected to read and use for analysis — which could enable indirect prompt injection.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 17, 2026, 12:55 PM

Issues

1