skills/luongnv89/asm/skill-index-updater/Snyk

skill-index-updater

Warn

Audited by Snyk on May 16, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly clones and scans arbitrary public GitHub repositories supplied by the user (Step 2: "git clone ...", find SKILL.md) and parses/evaluates those SKILL.md files (Step 3) to generate index files, eval scores, and PRs, so untrusted, user-generated third‑party content can materially influence agent decisions and actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 16, 2026, 07:48 PM

Issues

1

Security Audit — snyk — skill-index-updater