openspec-dev

Fail

Audited by Snyk on Jun 14, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). The URL points to a GitHub repository owned by an individual account (akornmeier) with no visible community signals (metadata shows 0 stars) and a "restricted/unknown" license — not an outright malicious link but an untrusted/low-reputation source that could host scripts or binaries, so treat it as suspicious until reviewed.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.70). Outsider-authored free text can enter the LLM context via proposal.md and tasks.md read from openspec/changes/<change-id>/ (the change directory content is not guaranteed to be authored by the operating user), which the workflow then converts into the phase “Plan” and sends to superpowers:subagent-driven-development.

Issues (2)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 14, 2026, 03:30 AM
Issues
2
Security Audit — snyk — openspec-dev