openspec-dev
Fail
Audited by Snyk on Jun 14, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E005: Suspicious download URL detected in skill instructions.
- Suspicious download URL detected (high risk: 0.80). The URL points to a GitHub repository owned by an individual account (akornmeier) with no visible community signals (metadata shows 0 stars) and a "restricted/unknown" license — not an outright malicious link but an untrusted/low-reputation source that could host scripts or binaries, so treat it as suspicious until reviewed.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). Outsider-authored free text can enter the LLM context via
proposal.mdandtasks.mdread fromopenspec/changes/<change-id>/(the change directory content is not guaranteed to be authored by the operating user), which the workflow then converts into the phase “Plan” and sends tosuperpowers:subagent-driven-development.
Issues (2)
E005
CRITICALSuspicious download URL detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata