clawsec-feed

Warn

Audited by Snyk on May 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs the agent to fetch and parse a public, community-driven advisory feed (e.g., DEFAULT_FEED_URL="https://raw.githubusercontent.com/prompt-security/ClawSec/main/advisories/feed.json" and GitHub releases API calls shown in the install/parse scripts) and then cross-reference and act on advisories (notify/remove/prioritize), so untrusted third-party content is read and can materially influence agent actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 17, 2026, 10:42 AM
Issues
1
Security Audit — snyk — clawsec-feed