assessing-vector-and-embedding-weaknesses
Warn
Audited by Snyk on Jun 23, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). The runtime path
scripts/agent.py→cmd_injectioncallsclient.search(...)and then reads outsider-authored free text fromh.payload["text"](retrieved chunks from the vector store) into the LLM context via the agent’s processing/printing, enabling indirect prompt-injection content to be ingested.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata