skills/lyndonkl/claude/conf-program-extraction/Snyk

conf-program-extraction

Warn

Audited by Snyk on Jun 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.75). The skill ingests “raw program text” from a source_ref (e.g., a parsed conference program fetched at runtime), and that program’s headings/abstract paragraphs are outsider-authored free text that the LLM reads to extract events.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 29, 2026, 08:16 AM

Issues

1

Security Audit — snyk — conf-program-extraction