sales-enrichso

Warn

Audited by Snyk on Apr 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's workflows explicitly accept and process arbitrary public content such as CSV URLs and LinkedIn profile/company URLs (see SKILL.md Step 4 Bulk Enrichment and references/enrichso-api-reference.md "csvFileUrl" and LinkedIn endpoints), so the agent will fetch and act on untrusted third‑party/user‑generated data that can influence subsequent API calls and actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 17, 2026, 06:26 PM
Issues
1
Security Audit — snyk — sales-enrichso