where-ai-coding-agents
Warn
Audited by Snyk on Jun 21, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). The skill’s runtime workflow includes checking for duplicates by running
gh pr list --state all --search "<keywords>"andgh issue list --search "<keywords>", which will ingest outsider-authored PR/issue text (titles/bodies/comments) from GitHub into the agent’s LLM context for analysis.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata