ai-slop-document-auditor

Warn

Audited by Snyk on Jun 23, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). The skill ingests user-provided documents (including arbitrary files/URLs) and extracts their readable text into document_units, which is then passed into subagents via CONTEXT: <document_units>—so if the input document text is authored by an outsider, that outsider free text becomes LLM context through the extraction→document_units→detector/guardrail delegation path.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 23, 2026, 04:45 PM
Issues
1
Security Audit — snyk — ai-slop-document-auditor