commcp-multi-agent-coordination-llm-based
Warn
Audited by Snyk on Jun 22, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (medium risk: 0.65). The workflow’s runtime LLM context can include outsider-authored free text via the
observationfield (e.g., scraped/public web content, downloaded documents, or other users’ messages) that agents classify and then incorporate into prompts for relevance assessment and planning; the SKILL.md does not restrict observations to user-authored content.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata