performing-purple-team-atomic-testing
Warn
Audited by Snyk on Jun 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The workflow downloads and ingests outsider-authored free text from the public Atomic Red Team repository at runtime (e.g.,
IEX ... DownloadString('https://raw.githubusercontent.com/.../install-atomicredteam.ps1')andInstall-AtomicRedTeam -getAtomicsfetching YAML atomics), which the script then parses/uses as readable content (attack commands/descriptions) during execution.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill explicitly downloads and executes remote PowerShell via IEX from https://raw.githubusercontent.com/redcanaryco/invoke-atomicredteam/master/install-atomicredteam.ps1 during setup, which fetches and runs remote code and is required for the skill to install/run atomics.
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs installing and executing Atomic Red Team tests (including running remote install scripts, requiring administrative/root access) and calls out atomic tests that create accounts, modify services and registry keys, and perform credential-dumping — all actions that change system state and can compromise the host.
Issues (3)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata