skills/readdle/spark-cli-skills/spark-recipe-notification-hygiene/Snyk

spark-recipe-notification-hygiene

Warn

Audited by Snyk on May 8, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). The skill's Step 2 explicitly instructs the agent to read email threads using "spark thread " (SKILL.md), which ingests untrusted, third-party user-generated email content from external senders that the agent must interpret to decide actions like reclassification, grouping, or archiving.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 8, 2026, 01:16 PM

Issues

1