design-md-query
Warn
Audited by Snyk on Jun 28, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.95). At runtime the skill reads
docs/<slug>/DESIGN.mdfrom the repo and injects its plain-text contents (e.g., the “Agent Prompt Guide” and other sections) into the agent’s LLM context; these DESIGN.md files are outsider-authored extracted design-system text from third-party companies’ public sites, not authored by the operating user.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata