longbridge-buffett-moat-analyzer
Warn
Audited by Snyk on May 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly uses a WebSearch fallback and requires adding WebSearch-sourced rows (publisher, date, URL) to the mandatory Data Source Appendix for items like industry outlook, management qualitative signals, brand/pricing evidence and regulatory news — i.e., it fetches and ingests open web content that the agent must read and use in scoring, which can materially influence decisions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata