skills/santosomar/general-secure-coding-agent-skills/runtime-error-explainer/Snyk

runtime-error-explainer

Warn

Audited by Snyk on Mar 29, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to read and interpret user-pasted error messages/stack traces ("Use when a user pastes an error they don't understand"), which are arbitrary untrusted user-generated content that the agent uses to decide fixes and next actions, enabling indirect prompt injection.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Mar 29, 2026, 09:19 PM

Issues

1

Security Audit — snyk — runtime-error-explainer