skills/n8n-io/n8n/planned-task-runtime/Snyk

planned-task-runtime

Warn

Audited by Snyk on Jun 15, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.75). The skill’s runtime path explicitly ingests the detached sub-agent’s result text from the <background-task-completed> turn (“result field holds the sub-agent's authoritative summary”), which is outsider-authored free text from another agent/task execution context.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 15, 2026, 10:20 PM

Issues

1

Security Audit — snyk — planned-task-runtime