skills/paulnsorensen/easy-cheese/affinage/Snyk

affinage

Warn

Audited by Snyk on May 28, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.95). /affinage fetches outsider-authored free text from the PR via gh api repos/<owner>/<repo>/pulls/<pr>/comments (inline review comments) and gh api repos/<owner>/<repo>/pulls/<pr>/reviews (review bodies), then includes those comment/review texts in the agent’s grading context and report.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 28, 2026, 07:54 AM

Issues

1

Security Audit — snyk — affinage