skills/marcioaltoe/skills/to-issues/Snyk

to-issues

Warn

Audited by Snyk on Jun 16, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.75). At runtime, if the operating user supplies an issue reference (issue number/URL/path), the skill fetches the issue tracker content and reads the full body and comments—i.e., outsider-authored free text from existing issues/discussion threads.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 16, 2026, 02:37 PM

Issues

1

Security Audit — snyk — to-issues