Skills
skills/sickn33/antigravity-awesome-skills/azure-ai-document-intelligence-ts/Snyk

azure-ai-document-intelligence-ts

Warn

Audited by Snyk on Apr 26, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts arbitrary public URLs as inputs (see "Analyze Document (URL)" and examples like "Extract Invoice Fields", "Extract Receipt Fields", and "Classify Document" which use body: { urlSource: ... } / documentUrl), so the agent will fetch and interpret untrusted third-party documents that could influence its actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 26, 2026, 05:58 AM
Issues
1