Skills
skills/openai/plugins/gtex-eqtl-skill/Snyk

gtex-eqtl-skill

Warn

Audited by Snyk on Apr 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.70). The skill makes runtime HTTP requests to public third‑party APIs (Ensembl REST in scripts/variant_resolution.py and the GTEx v2 API in scripts/gtex_eqtl.py) and directly consumes their JSON responses to resolve variants and decide/query results, so external content can materially influence its behavior.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 20, 2026, 02:27 PM
Issues
1