skills/membranedev/application-skills/readme-com/Snyk

readme-com

Warn

Audited by Snyk on Apr 30, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows it runs Membrane actions such as "get-doc" and "get-custom-page" against Readme.com, which fetches user-created/public documentation and pages that the agent is expected to read and could materially influence subsequent actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 30, 2026, 03:20 AM

Issues

1

Security Audit — snyk — readme-com