skills/ryzencool/dinox-cli-skills/dino-note/Snyk

dino-note

Warn

Audited by Snyk on Jun 13, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (medium risk: 0.65). Outsider-authored free text can enter the LLM context when the workflow performs note reads (e.g., dino note detail / dino note preview / dino note get --context-only) because those commands return markdown/content authored by other parties, which the agent then uses in its reasoning context.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 13, 2026, 09:16 AM

Issues

1

Security Audit — snyk — dino-note