Skills
skills/sd0xdev/sd0x-dev-flow/epic-merge/Snyk

epic-merge

Warn

Audited by Snyk on Apr 28, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests user-generated GitHub data (e.g., via git fetch origin, gh pr view, and git log origin/<base>..origin/<head> --pretty=format:'%s' to build per-PR manifests and display PR titles) and uses that content in its verification and AskUserQuestion gating logic, so untrusted third‑party commit/PR content can influence merge decisions and tool actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 28, 2026, 02:18 AM
Issues
1
Security Audit — snyk — epic-merge