Skills
skills/membranedev/application-skills/graphcms/Snyk

graphcms

Warn

Audited by Snyk on May 1, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md instructs the agent to use the Membrane CLI to connect to a GraphCMS tenant and to list/run actions (e.g., "membrane action list" and "membrane action run") which return content from an external GraphCMS instance — meaning the agent will ingest third‑party (potentially user‑generated/untrusted) CMS content that can influence subsequent actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 1, 2026, 02:31 PM
Issues
1