skills/membranedev/application-skills/slicktext/Snyk

slicktext

Warn

Audited by Snyk on Apr 28, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). This skill explicitly connects to the third‑party SlickText service via the Membrane CLI and runs actions (e.g., "membrane action run") against entities like "Message" and "Contact", meaning the agent will ingest user-generated/third‑party SMS content from SlickText accounts that could influence subsequent actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 28, 2026, 09:30 PM

Issues

1

Security Audit — snyk — slicktext