skills/membranedev/application-skills/dataforseo/Snyk

dataforseo

Warn

Audited by Snyk on Apr 30, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). SKILL.md explicitly exposes the agent to arbitrary public webpages (e.g., the "Parse Page Content" action and "On Page Raw HTML GET" which fetch and parse content from any webpage), so untrusted third‑party content could be read and influence agent behavior.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 30, 2026, 08:58 AM

Issues

1

Security Audit — snyk — dataforseo