skills/membranedev/application-skills/social-intents/Snyk

social-intents

Warn

Audited by Snyk on May 1, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md instructs the agent to use Membrane to run actions (membrane action run ... --json) against Social Intents to retrieve objects like Chat/Transcript/Message (user-generated social/chat content) whose output the agent is expected to read and act on, so untrusted third-party content could influence behavior.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 1, 2026, 05:24 AM

Issues

1

Security Audit — snyk — social-intents