skills/nexu-io/looper/pr-takeover/Snyk

pr-takeover

Warn

Audited by Snyk on Jun 15, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). Outsider free text is ingested via the runtime GraphQL query that lists unresolved PR review threads (gh api graphql ... reviewThreads ... comments ... body), where body is authored by external reviewers and is then used in the agent’s context to decide replies/dismissals.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 15, 2026, 05:40 PM

Issues

1

Security Audit — snyk — pr-takeover