recoup-platform-build-os
Warn
Audited by Snyk on Jul 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). Outsider free text is ingested at runtime from the harness-provided
use-input/*.mdfiles (e.g.,evals/scenarios/consulting-firm/use-input/acme-followup.md,record-label/use-input/new-release-brief.md,research-lab/use-input/experiment-001-results.md) which the generated{domain}-intake/auto-manage loop reads and then files intoknowledge/and updates dashboards—so that outsider-authored prose becomes LLM context via the agent’s “read it / extract it” steps.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata