recoup-internal-dev-issue-tracker

Warn

Audited by Snyk on Jul 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.70). This skill’s workflow is about writing/maintaining GitHub issues and explicitly instructs the user to “Read” two reference issues (chat#1747 and chat#1767) and to include their content/links, which at runtime would require fetching outsider-authored issue body text from GitHub and placing it into the agent/LLM context.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 17, 2026, 03:07 AM
Issues
1