clawsec-feed
Warn
Audited by Snyk on May 17, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs the agent to fetch and parse a public, community-driven advisory feed (e.g., DEFAULT_FEED_URL="https://raw.githubusercontent.com/prompt-security/ClawSec/main/advisories/feed.json" and GitHub releases API calls shown in the install/parse scripts) and then cross-reference and act on advisories (notify/remove/prioritize), so untrusted third-party content is read and can materially influence agent actions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata