skills/notysoty/openagentskills/LangGraph State Machine Designer/Snyk

LangGraph State Machine Designer

Warn

Audited by Snyk on Mar 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs designing graphs that call web/search tools (e.g., the "search the web" example, ToolNode([web_search_tool]) and the search_results state field), so the agent is expected to fetch and ingest open public web content that could contain untrusted instructions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 29, 2026, 05:57 AM

Issues

1

Security Audit — snyk — LangGraph State Machine Designer