skills/owainlewis/agent-skills/backlog-manager/Snyk

backlog-manager

Warn

Audited by Snyk on Jun 24, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). Step 4 (“Classify Open Issues”) fetches open GitHub issues including their free-form body and comments via gh issue list --json ... body,comments, and that text is then used to generate/update the LLM’s “Agent Assessment” and routing decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 24, 2026, 08:20 PM

Issues

1

Security Audit — snyk — backlog-manager