holoscan-install-wheel

Warn

Audited by Snyk on Jun 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (medium risk: 0.65). The runtime workflow fetches free-form example Python scripts and YAML from outsider-authored public sources (GitHub raw URLs) via curl -fsSL ... -o /tmp/..., then reads the YAML text and executes the downloaded .py files with python3, so outsider text can enter the LLM context indirectly through the agent’s handling of those contents.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).


MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 0.80). The prompt explicitly tells the user/agent to run a sudo command (sudo /opt/nvidia/holoscan/examples/download_example_data) and to install system-level Debian packages/data under /opt, and also directs downloading and executing remote scripts — actions that request elevated privileges and can modify system state.

Issues (3)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012
MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 18, 2026, 04:34 PM
Issues
3
Security Audit — snyk — holoscan-install-wheel