Skills
skills/membranedev/application-skills/kern-ai/Snyk

kern-ai

Warn

Audited by Snyk on Apr 29, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). The skill instructs the agent to connect to an external Kern AI instance via the Membrane CLI (e.g., "membrane connect --connectorKey kern-ai" and "membrane action list/run ... --connectionId=CONNECTION_ID"), which fetches and returns arbitrary user-generated dataset/record content from that third‑party service that the agent is expected to read and act on, enabling indirect prompt injection.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 29, 2026, 03:19 PM
Issues
1