skills/membranedev/application-skills/aylien-news-api/Snyk

aylien-news-api

Warn

Audited by Snyk on Apr 30, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches and analyzes news stories from the Aylien News API (public third‑party news sources) as part of its documented actions in SKILL.md (e.g., list-stories, list-related-stories), so untrusted external article content would be read and could influence agent decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 30, 2026, 07:59 AM

Issues

1

Security Audit — snyk — aylien-news-api