instagram-videos

Warn

Audited by Snyk on Jul 10, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Yes—Step 2 scrapes Picnob profile feed (outsider-authored web content) via browser_cdpRuntime.evaluate, extracting fields like caption/time/downloadUrl from the page and then Step 3/4 passes that scraped text into the agent’s runtime context (saved JSON and later used for reporting/manifest output).

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 10, 2026, 01:40 AM
Issues
1