Skills
skills/sickn33/antigravity-awesome-skills/odoo-woocommerce-bridge/Snyk

odoo-woocommerce-bridge

Warn

Audited by Snyk on Apr 14, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The SKILL.md Examples (Example 1 and 2) explicitly call the WooCommerce REST API (e.g., wcapi.get("orders", ...) and wcapi.get("products", ...) against https://mystore.com) and use returned customer/order/product data to create or update Odoo records, so untrusted user-generated content from the external WooCommerce store directly influences agent actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 14, 2026, 05:02 PM
Issues
1