skills/lovstudio/visual-clone-skill/lovstudio-visual-clone/Snyk

lovstudio-visual-clone

Warn

Audited by Snyk on May 2, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). This skill explicitly requires ingesting and analyzing an arbitrary user-provided reference image (see "Step 1: Receive the Reference Image" in SKILL.md), which is untrusted user-generated content that the agent must read and whose contents directly determine the generated replication prompts and design decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 2, 2026, 05:01 AM

Issues

1