skills/marclelamy/skills/gsap/Snyk

gsap

Warn

Audited by Snyk on May 5, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.70). The skill includes runtime script loads from https://cdn.jsdelivr.net/npm/gsap@3.14.2/dist/gsap.min.js and https://cdn.jsdelivr.net/npm/gsap@3.14.2/dist/TextPlugin.min.js which fetch and execute remote JavaScript (required GSAP runtime/plugins) and therefore execute remote code at runtime.

Issues (1)

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 5, 2026, 04:00 PM

Issues

1

Security Audit — snyk — gsap