skills/parallel-web/parallel-cursor-plugin/parallel-web-search/Snyk

parallel-web-search

Warn

Audited by Snyk on May 15, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md requires running parallel-cli search to fetch web search results (saved to /tmp/*.json) and instructs the agent to read and cite those open web excerpts as facts, so it clearly ingests untrusted public third-party content from the open web.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 15, 2026, 11:48 PM

Issues

1

Security Audit — snyk — parallel-web-search