moai-domain-html-report

Warn

Audited by Snyk on Jun 30, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). The skill renders user-supplied markdown into HTML templates (e.g., {{{.}}}, {{tldr_html}}, {{body_html}}, {{log_excerpt}}, {{diagram_svg}}) that become readable prose in the generated .html, so any upstream outsider-authored free text included in that markdown will be ingested into the LLM context via the markdown argument.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 30, 2026, 05:12 AM
Issues
1
Security Audit — snyk — moai-domain-html-report