skills/oneshot-agent/agent-skills/oneshot-messaging/Snyk

oneshot-messaging

Warn

Audited by Snyk on Jun 18, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). The skill’s runtime path for agent.smsInboxList/agent.smsInboxGet ingests SMS inbox message body text (outsider-authored messages from other people) into the agent context via the inbox retrieval APIs.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 18, 2026, 04:25 PM

Issues

1

Security Audit — snyk — oneshot-messaging