skills/proxiblue/claude-skills/analyze-m1-module-for-migration/Snyk

analyze-m1-module-for-migration

Warn

Audited by Snyk on Apr 12, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill's Step 5 ("Research M2 Alternatives") explicitly requires searching and checking open/public third‑party sites (vendor websites, GitHub, Adobe Commerce Marketplace) and using those external results to recommend alternatives, so untrusted web content is ingested and can influence migration decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 12, 2026, 11:32 AM

Issues

1

Security Audit — snyk — analyze-m1-module-for-migration